Reversing (and Recreating) Cryptographic Secrets Found in .NET Assemblies Using Python
Picture the scene - you’re on a penetration test, somehow you’ve got hold of a bunch of .NET ...
Read MoreMicrosoft Internet Explorer Remote Code Execution 0-Day (CVE-2020-0674)
2020 is not starting out quietly for Microsoft, it seems. After the first Patch Tuesday of 2020 ...
Read MoreModSecurity Denial of Service Details - CVE-2019-19886
ModSecurity is an open-source WAF engine maintained by Trustwave. As a lively open-source project, ...
Read MoreWindows CryptoAPI Spoofing Vulnerability - CVE-2020-0601
One of the most notable vulnerabilities patched during Microsoft's first Patch Tuesday of 2020 was ...
Read MoreCitrix ADC/Netscaler - CVE-2019-19781
The Citrix vulnerability (CVE-2019-19781) was first identified in December of 2019. This ...
Read MorePatch Tuesday, January 2020
Happy 2020! Microsoft is helping you celebrate the new decade with patches for 49 CVEs. Of those ...
Read MoreModSecurity v3.0.4 Released!
It is a pleasure to announce the release of ModSecurity version 3.0.4 (libModSecurity). This ...
Read MoreWindows Debugging & Exploiting Part 3: WinDBG Time Travel Debugging
Introduction Hi, my fellow friends! How are you? Hopefully, you had a terrific holiday and much ...
Read MoreUsing the InterPlanetary File System For Offensive Operations
Introduction In this blog post, I intend to provide some insight into using the InterPlanetary File ...
Read MoreLeveraging Disk Imaging Tools to Deliver RATs
This year we observed a notable uptick in disc imaging software (like .ISO) being used as a ...
Read MoreAnyone Can Check for Magecart with Just the Browser
In the past, there have been plenty of articles and blog posts recommending the use of Content ...
Read MoreTyposquatting in Python Repositories
Python's popularity is amazing and constantly growing. For the first time, Python has overtaken ...
Read MorePatch Tuesday, December 2019
December's Patch Tuesday is upon us, and, as in years gone by, it's a rather light month. All told ...
Read MoreSCshell: Fileless Lateral Movement Using Service Manager
During red team engagements, lateral movement in a network is crucial. In addition, as a critical ...
Read MoreCVE-2019-1429: (Another) Microsoft Internet Explorer 0-Day
November’s Patch Tuesday from Microsoft included a patch for yet another Internet Explorer 0-day, ...
Read MoreIntroducing Password Cracking Manager: CrackQ
Today we are releasing CrackQ, a queuing system to manage password cracking that I've been working ...
Read MoreTime Windows for Penetration Testing
Often when penetration tests are scheduled, it will be requested that testing occurs during ...
Read MoreCVE-2019-15652: SatLink VSAT Vulnerabilities
Back in May of this year, I discovered a few vulnerabilities in the SatLink 2000 VSAT modem, which ...
Read MoreFake Windows Update Spam Leads to Cyborg Ransomware and Its Builder
Recently, fake Microsoft Windows Update emails were spammed with the following subject lines: ...
Read MoreWindows Debugging & Exploiting Part 2 - WinDBG 101
Introduction Hello again! After our previous post about the environment setup, now it is time to ...
Read MoreFingerprinting FreeBSD OS Versions using OpenSSH
In the past, we’ve described how to fingerprint Ubuntu OS Version using OpenSSH. This time, I’ll ...
Read MoreA Call for Cooler Heads
One of the unfortunate parts of a business like ours is when disputes arise from penetration ...
Read MoreDouble Loaded Zip File Delivers Nanocore
Most malware sent via emails is packaged in archives such as ZIP, RAR, and 7z (7-Zip). ...
Read MoreWindows Debugging & Exploiting Part 1 - Environment Setup
Introduction In this blog series, I will try to set some base knowledge for Windows system ...
Read MoreMessing with Azorult Part 2: Command and Control
As we mentioned in our earlier blog, Azorult is very popular in the underground hacking forum. ...
Read MoreMessing with Azorult Part 1: Malware Breakdown
In this blog series, we dive into an information stealing Trojan called Azorult that we analyzed ...
Read MorePatch Tuesday, October 2019
Microsoft’s security update for the month of October is one of the lightest patch Tuesdays of the ...
Read More