Collaborate Disseminate
Recently, a vulnerability was discovered in Skype – specifically, the Skype Updater – which allowed full privilege escalation to SYSTEM. The description of this vulnerability seems fairly straightforward; however, I found it … Continue reading How to reproduce Skype DLL hijacking vulnerability?
Do people implicitly trust closed sourced binaries delivered by third party vendors? I am thinking of infrastructure applications like databases and web-servers but also more made-to-measure IT applications on the server or d… Continue reading How do you measure risk due to closed source applications? [on hold]
I have recently read a post about vulnerability of Python pickle module which allows to execute arbitrary Python code on unpickling: https://intoli.com/blog/dangerous-pickles/
The docs are suggesting to “never unpickle data r… Continue reading Are there any known Python pickle viruses?
How can I disable NTLMv1, LM, and LMv2 on up-to-date Windows 10 machines? I obviously don’t have group policy, so I need to know the relevant registry keys and what to set them to.
I’ve got a Raspberry PI with Coova Chili installed. We’ve been doing some testing with a friend’s apartment neighbors. Or at least we were supposed to. :-/ It stopped working, so I started poking around today and found someth… Continue reading Spam spotted in dead.letter on RPI w/ Coova Chili
I have a question regarding how to perform the “Active Intrusion Attempts” and the “Final Analys”.
In our company we have a lots of different applications I would like to do the “Security scanning on”.
I thinking about use … Continue reading Software Analyse behind a Active Directory etc
From what I’ve read, Spectre and Meltdown each require rogue code to be running on a Windows box in order for attacks to take place. The thing is, once a box has rogue code running, it’s already compromised.
Given that the … Continue reading On Windows boxes, is patching for Spectre and Meltdown necessary?
Canonical question regarding the 2018 Jan. disclosed Meltdown and Spectre Attacks. Other identical or significantly similar questions should be closed as a duplicate of this one.
Main concerns
What is speculative execu… Continue reading Meltdown and Spectre Attacks
Is there a documented process for official information release for embargoed vulnerabilities in the Common Vulnerabilities and Exposures (CVE) system?
If such a process exists, how does it address situations like the recent … Continue reading Is there a documented process for official information release for embargoed vulnerabilities in the CVE system?
Is there a documented process for official information release for embargoed vulnerabilities in the Common Vulnerabilities and Exposures (CVE) system?
If such a process exists, how does it address situations like the recent … Continue reading Is there a documented process for official information release for embargoed vulnerabilities in the CVE system?