Posts mit Tag: Penetration test

26 Aug. 2022 | 17 min Lesezeit

Exploiting Laravel based applications with leaked APP_KEYs and Queues

So you got access to a Laravel .env file, now what?

Penetration test PHP Laravel CMS CVE-2018-15133

18 Jan. 2022 | 8 min Lesezeit

Vulnerability Spotlight: RCE in Ajax.NET Professional

Vulnerability / exploitation details for CVE-2021-23758

.NET Penetration test CVE-2021-23758

18 Juni 2021 | 8 min Lesezeit

Exploiting insecure RCCMD installations

Owning systems through remote control software

penetration-test pentest RCCMD

8 Feb. 2020 | 14 min Lesezeit

An Trinhs RMI Registry Bypass

A closer look at the RMI Registry whitelist bypass gadget from An Trinhs Blackhat Europe 2019 presentation

Java RMI deserialization Gadgets pentest penetration-test

30 Okt. 2019 | 7 min Lesezeit

(Ab)using Linux SNMP for RCE

How to use a SNMP write community to gain (remote) code execution as root on Linux systems

SNMP Linux penetration-test pentest privilege-escalation

28 Apr. 2019 | 16 min Lesezeit

Attacking RMI based JMX services

An attack primer on how to hack into RMI based JMX services

Java RMI JMX deserialization pentest penetration-test

2 März 2019 | 5 min Lesezeit

Repacking iOS applications

A quick and easy guide for binary patching and repacking iOS apps during security audits

mobile iOS penetration-test