
An Trinhs RMI Registry Bypass
A closer look at the RMI Registry whitelist bypass gadget from An Trinhs Blackhat Europe 2019 presentation
MoreWe offer in-depth system and application reviews using various offensive security techniques/tools used by highly trained attackers to provide your organization with the best analysis possible.
In Security Reviews our team identifies vulnerabilities by analyzing the source code and existing system settings. We use a combination of static and dynamic approaches to achieve the best possible results.
Our team supports your IT department by providing a direct contact for technical security questions. Any questions we cannot answer right away we will research for you.
MOGWAI LABS is a "no fluff" company. We focus on vulnerabilities that matter, use attack techniques that work, and provide solutions that scale.
We want to support your organization by improving its resilience against technically highly-skilled attackers, transferring our knowledge and experience.
If you want to work with a small and agile team of security experts, MOGWAI LABS is the partner of your choice.
Latest updates, tools and ideas from our internal research projects.
A closer look at the RMI Registry whitelist bypass gadget from An Trinhs Blackhat Europe 2019 presentation
MoreHow to use a SNMP write community to gain (remote) code execution as root on Linux systems
MoreAn attack primer on how to attack Java RMI services using Java deserialization
MoreA quick and easy guide for binary patching and repacking iOS apps during security audits
More