RedCross was a maze, with a lot to look at and multiple paths at each stage. I’ll start by enumerating a website, and showing two different ways to get a cookie to use to gain access to the admin panel. Then, I’ll get a shell on the box as penelope, either…

Quick Summary Hey guys today RedCross retired and here is my write-up about it. To get an initial shell on this box there are two ways , first one is to exploit an authenticated RCE which gives you a shell as www-data , then escalate to root. The second way…

[Linux] Two Privilege Escalation techniques abusing sudo token - nongiach/sudo_inject

Exploiting a known XXE in Apache Solr through OpenCMS handleSolrSelect, to read arbitrary files from the OpenCMS' server.

This writeup is for the command injection in TimeMachine diagnose extension, affects 10.12.x-10.14.3

Schneider Electric SE recently fell victim to a breach of its safety system, which crippled operations at a critical infrastructure facility in the Middle East. It’s the first reported attack on a safety instrumented system...

Recently 2 vulnerabilities in Envoy

I’ve recently converted my sturdy Raspberry Pi Zero W to a bad USB using the P4wnP1 image and toolkit created my mame82. The ultimate goal…

Timing analysis powered up by Gaussian Mixture Models to deal with noisy and small timing differences. This article analyzes, models and implements Timing Attacks using Machine Learning.

0 votes and 0 comments so far on Reddit

A simple tool to do several HTTP / HTTPS requests and simulate navigation - realtho/PartyLoud

0 votes and 0 comments so far on Reddit

0 votes and 0 comments so far on Reddit

What is Cobalt Strike? Raphael Mudge is the creator of Cobalt Strike (CS), around 2010 he released a tool noscriptd Armitage, which is described by wikipedia as a

Abusing Office Groups

A new version of Adblock Plus was released on July 17, 2018. Version 3.2 introduced a new filter option for rewriting requests. A day later AdBlock followed suit and released support for the new filter option. uBlock, being owned by AdBlock, also implemented…

An introduction to every aspect of how TOR works, from hidden onion addresses to the nodes that make up TOR.

0 votes and 0 comments so far on Reddit

During a recent review of the ADManager Plus software offered by Zoho, we were able to identify a privilege escalation vulnerability which would allow authen...

Two culprits named Nicolescu and Miclaus found guilty of their criminal battle in 2007 with the making of malware. The US government finally convicts both