Cyber Labs |Research, Vulnerability Disclosures & More| LRQA

ElephantPoint: a SharePoint Enumeration Tool

11 Feb 2026

Learn how ElephantPoint, developed by LRQA, enables red teams to enumerate and download SharePoint files using Azure access...

CVE-2023-28802: Zscaler Bypass via Service Restart

22 Jan 2026

LRQA details CVE-2023-28802, a Zscaler Client Connector vulnerability that allowed low-privilege users to bypass ZIA/ZPA controls via service...

Hacking Games, Hacking Systems

3 Dec 2025

Discover how game hacking techniques like DLL injection and memory patching relate to real-world cybersecurity skills. Learn through...

Penetration Testing: What to expect

27 Nov 2025

A practical overview of how penetration testing works, what it reveals and how it helps organisations strengthen their...

Hash Relaying: The Path to Domain Admin

27 Oct 2025

Discover how common AD misconfigurations still let NTLM relay attacks turn a simple SMB or HTTP auth into...

You're absolutely right: Vibe coding in the world of...

8 Aug 2025

Explore how AI and 'vibe coding' are transforming penetration testing, from prompt-driven development to modular attack tools and...

Remote Code Execution in Broadcom Altiris IRM

7 Jul 2025

A critical unauthenticated remote code execution (RCE) vulnerability was discovered in the Broadcom Symantec Altiris Inventory Rule Management...

Exploring the Shadow Labyrinth

26 Jun 2025

How LRQA cracked the Shadow Labyrinth in Hack The Box’s 2025 CTF, using reverse engineering, decryption and custom...

Next Level Smuggling with WebAssembly

14 Mar 2025

Using WebAssembly to deliver malicious payloads through HTML smuggling.

The $1.5bn Bybit theft – what happened?

24 Feb 2025

An analysis of one of the most significant breaches in crypto history - the theft of $1.5 billion...

Tools

Tutorials

Blogs

Filter by

ElephantPoint: a SharePoint Enumeration Tool

CVE-2023-28802: Zscaler Bypass via Service Restart

Hacking Games, Hacking Systems

Penetration Testing: What to expect

Hash Relaying: The Path to Domain Admin

You're absolutely right: Vibe coding in the world of...

Remote Code Execution in Broadcom Altiris IRM

Exploring the Shadow Labyrinth

Next Level Smuggling with WebAssembly

The $1.5bn Bybit theft – what happened?

Error

No results found