Tarlogic's Blog - Cybersecurity - Page 9

Cybersecurity articles with security analysis and ethical hacking technics information

Attacking QA platforms: Selenium Grid

09 - April - 2019 - Marcos Carro

During the course of a Red Team exercise serveral QA assets where discovered. In particular the usage of the Selenium Grid platform without authentication caught the team’s a[...]

Security in Sciter-based applications

04 - April - 2019 - Juan Manuel Fernandez

[...]

Kerberos (I): How does Kerberos work? – Theory

20 - March - 2019 - Eloy Pérez

[...]

Linux process infection

21 - December - 2018 - Gonzalo Carracedo

[...]

SaSSHimi: Evading SSH AllowTcpForwarding

16 - November - 2018 - Raul Sampedro

[...]

Arecibo: an OOB exfiltration tool (DNS & HTTP)

09 - November - 2018 - Juan Manuel Fernandez

[...]

Ubiquoss Switch VP5208A Vulnerability – CVE-2018-10024

01 - September - 2018

Vendor: Ubiquoss Product: Ubiquoss Switch VP5208A Discovered by: Juan Manuel Fernandez – Tarlogic (@TheXC3LL) Ubiquoss Switch VP5208A Vulnerability – CVE-2018-10024 Cre[...]

Abusing SeLoadDriverPrivilege for privilege escalation

14 - June - 2018 - Oscar Mallo

0x01 – Preamble In Windows operating systems, it is well known that assigning certain privileges to user accounts without administration permissions can result in local privilege[...]

Interactive Shell via Bluetooth

01 - June - 2018 - Juan Manuel Fernandez

[...]

Pentests in restricted VDI environments

21 - May - 2018 - Viatcheslav Zhilin

A common scenario during an assessment or a pentesting is starting it from a VDI environment, focused towards “what could an insider or an attacker who has stolen a worker[...]

< 1 … 6 7 8 9 10 11 12 >

Necessary

3rd Party Cookies