Cybersecurity blog

Cybersecurity articles with security analysis and ethical hacking technics information

Kerberos (III): How does delegation work?
Kerberos (III): How does delegation work?

Introduction to Kerberos delegation There are several kinds of delegation implemented by using the Kerberos protocol on Windows and Linux servers. Basically, delegation allows a se[...]

Read more
Smart Meters – Threats and Attacks to PRIME Meters
Smart Meters – Threats and Attacks to PRIME Meters

A golden rule in the world of cybersecurity is that the system risk is greater than the aggregate risk of its component elements. This is because, as the number of vulnerable eleme[...]

Read more
Smart Meters – The Spanish Scenario and the Telemanagement System
Smart Meters – The Spanish Scenario and the Telemanagement System

Smart meters have become a reality in recent years not only in new housing, but also in older buildings where—by legal requirement—they have had to renew their measuring device[...]

Read more
Vulnerabilities in Ampache (<=3.9.1)
Vulnerabilities in Ampache (<=3.9.1)

During a Red Team operation, multiple vulnerabilities where discovered in Ampache, an open source web platform for audio/video streaming. CVE codes have been assigned for two of th[...]

Read more
ZeroShell Vulnerability – CVE-2019-12725
ZeroShell Vulnerability – CVE-2019-12725

Product: ZeroShell Publication Date: 17/07/2019 Author: Juan Manuel Fernandez (@TheXC3LL) – Tarlogic Zeroshell vulnerability – CVE-2019-12725 RCE as root The latest ver[...]

Read more
Kerberos (II): How to attack Kerberos?
Kerberos (II): How to attack Kerberos?

[...]

Read more
Attacking QA platforms: Selenium Grid
Attacking QA platforms: Selenium Grid

During the course of a Red Team exercise serveral QA assets where discovered. In particular the usage of the Selenium Grid platform without authentication caught the team’s a[...]

Read more
Security in Sciter-based applications
Security in Sciter-based applications

[...]

Read more
1 2 3 4 5 6 7