COM and the PowerThIEf 10 Jul 2018 Recently, Component Object Model (COM) has come back in a big way, particularly with regards to it being... Read more
Improving safety management: A China focus 10 Jul 2018 How we can manage safety across the chemical industry in China. Discussing the importance of improving safety managmeent... Read more
CVE-2018-6851 to CVE-2018-6857: Sophos Privilege Escalation Vulnerabilities 25 Jun 2018 We have recently disclosed a list of vulnerabilities to Sophos that allow local attackers to elevate their privileges... Read more
CVE-2018-10956: Unauthenticated Privileged Directory Traversal in IPConfigure Orchid Core... 14 Jun 2018 IPConfigure Orchid Core VMS is a Video Management System that is vulnerable to a directory traversal attack, which... Read more
Introducing Prowl 5 Jun 2018 Prowl was initially designed as an in house tool to aid engagements where there’s a requirement to capture... Read more
Apache mod_python for red teams 31 May 2018 Nettitude’s red team engagements are typically designed to be as highly targeted and as stealthy as possible. For... Read more
A red teaming approach to PCI-DSS 15 May 2018 If your organisation is compliant with PCI DSS, chances are you're conducting penetration tests on an annual basis.... Read more
WinDbg: using pykd to dump private symbols 11 Apr 2018 We’ve recently been conducting some reverse engineering and vulnerability analysis on an Anti Virus (AV) product and wanted... Read more
Improving the ethical performance of client’s supply chains 14 Mar 2018 LRQA is exhibiting at the Sedex Conference 2018 in London. This year's theme is "Impact through Leadership. Defining... Read more
Using Frida to Bypass Snapchat’s Certificate Pinning 13 Mar 2018 We have recently published an article discussing the basics of certificate pinning – TLS Certificate Pinning 101. We... Read more
Best seller New Price from Limited availability Course type Course length Dates and location x *PLEASE NOTE: Course is available in more countries, languages and dates*