Kerberoasting, exploiting unpatched systems – a day in the life of a Red Teamer
The Scope Recently, we conducted a red team assessment for a large enterprise client where the scenarios allowed were to […]
The Scope Recently, we conducted a red team assessment for a large enterprise client where the scenarios allowed were to […]
Few months back, I had the opportunity to conduct two workshops at BSidesDelhi and CSI Mumbai on the above topic. […]
One of the key security devices in a lot of organizations is an HSM – Hardware Security Module. All banks use […]
INTRODUCTION Point-of-sale (POS) is the place where a retail transaction is completed. It is the point at which a customer […]
Overview ASUS Router RT-N10 Plus is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the result_of_get_changed_status.asp […]
The Meaning XE which stands for XML Entity is a standard for representing sets of data. Meanwhile, Entities are more […]
What is POODLE? POODLE stands for Padding Oracle On Downgraded Legacy Encryption Vulnerability CVE: CVE-2014-3566 What is the attack? The […]
Introduction In the last post we saw how the recent bash vulnerability can be remotely exploited in a variety of […]
Introduction A remotely exploitable vulnerability was discovered by Stephane Chazelas of Akamai in the GNU Bash command shell. The vulnerability […]
Heartbleed Advisory & FAQ Please find below a quick FAQ on the Heartbleed vulnerability and what you can to address […]