Cyber Labs

Operational Security with PoshC2 Framework

23 May 2019

This post describes a new capability that has been deployed within PoshC2, which is designed to assist with revealing...

CVE-2017-18019: Privilege Escalation via a Kernel Pointer Dereference

17 Apr 2019

A little while ago, I discovered a vulnerability, CVE-2017-18019, affecting a kernel driver of multiple K7 Computing security products, as well...

Introducing PoshC2 v4.8 - includes C# dropper, task management...

1 Apr 2019

We recently released version 4.8 of PoshC2, which includes a number of fixes and improvements that help facilitate simulated...

CVE-2018-8955: Bitdefender GravityZone Arbitrary Code Execution

16 Oct 2018

We recently identified a vulnerability in the digitally signed Bitdefender GravityZone installer. The vulnerability allows an attacker to...

DerbyCon 2018 CTF Write Up

11 Oct 2018

We have just returned from the always amazing DerbyCon 2018 conference. We competed in the 48 hour Capture the Flag...

CVE-2018-5240: Symantec Management Agent (Altiris) Privilege Escalation

12 Sep 2018

During a recent red team exercise, we discovered a vulnerability within the latest versions of the Symantec Management...

CVE-2018-12897: Solarwinds Dameware Mini Remote Control Local SEH Buffer...

5 Sep 2018

Dameware Mini Remote Control (MRC) is a remote administration utility allowing remote access to end user devices for...

Introducing Scrounger - iOS and Android mobile application penetration...

23 Aug 2018

Scrounger is a modular tool designed to perform the routine tasks required during a mobile application security assessment. ...

Extending C2 Lateral Movement – Invoke-Pbind

16 Aug 2018

Invoke-Pbind is a mini post exploitation framework written in PowerShell, which builds C2 communications over SMB named pipes...

Using PoolTags to Fingerprint Hosts

8 Aug 2018

Commonly, malware will fingerprint the host it executes on, in an attempt to discover more about its environment...

Tools

Tutorials

Blogs

Filter by

Operational Security with PoshC2 Framework

CVE-2017-18019: Privilege Escalation via a Kernel Pointer Dereference

Introducing PoshC2 v4.8 - includes C# dropper, task management...

CVE-2018-8955: Bitdefender GravityZone Arbitrary Code Execution

DerbyCon 2018 CTF Write Up

CVE-2018-5240: Symantec Management Agent (Altiris) Privilege Escalation

CVE-2018-12897: Solarwinds Dameware Mini Remote Control Local SEH Buffer...

Introducing Scrounger - iOS and Android mobile application penetration...

Extending C2 Lateral Movement – Invoke-Pbind

Using PoolTags to Fingerprint Hosts

Error

No results found

Tools

Tutorials

Blogs

Training

Filter by

Operational Security with PoshC2 Framework

CVE-2017-18019: Privilege Escalation via a Kernel Pointer Dereference

Introducing PoshC2 v4.8 - includes C# dropper, task management...

CVE-2018-8955: Bitdefender GravityZone Arbitrary Code Execution

DerbyCon 2018 CTF Write Up

CVE-2018-5240: Symantec Management Agent (Altiris) Privilege Escalation

CVE-2018-12897: Solarwinds Dameware Mini Remote Control Local SEH Buffer...

Introducing Scrounger - iOS and Android mobile application penetration...

Extending C2 Lateral Movement – Invoke-Pbind

Using PoolTags to Fingerprint Hosts

Error

No results found