TARLOGIC's BLOG
Cybersecurity - Page 10

Cybersecurity articles with security analysis and ethical hacking technics information

Attacking QA platforms: Selenium Grid
Attacking QA platforms: Selenium Grid
Marcos Carro

During the course of a Red Team exercise serveral QA assets where discovered. In particular the usage of the Selenium Grid platform without authentication caught the team’s a[...]

Read more
Security in Sciter-based applications
Security in Sciter-based applications
Juan Manuel Fernandez

[...]

Read more
Kerberos (I): How does Kerberos work? – Theory
Kerberos (I): How does Kerberos work? – Theory
Eloy Pérez

[...]

Read more
Linux process infection
Linux process infection
Gonzalo Carracedo

[...]

Read more
SaSSHimi: Evading SSH AllowTcpForwarding
SaSSHimi: Evading SSH AllowTcpForwarding
Raul Sampedro

[...]

Read more
Arecibo: an OOB exfiltration tool (DNS & HTTP)
Arecibo: an OOB exfiltration tool (DNS & HTTP)
Juan Manuel Fernandez

[...]

Read more
Ubiquoss Switch VP5208A Vulnerability – CVE-2018-10024
Ubiquoss Switch VP5208A Vulnerability – CVE-2018-10024

Vendor: Ubiquoss Product: Ubiquoss Switch VP5208A Discovered by: Juan Manuel Fernandez – Tarlogic (@TheXC3LL) Ubiquoss Switch VP5208A Vulnerability – CVE-2018-10024 Cre[...]

Read more
Abusing SeLoadDriverPrivilege for privilege escalation
Abusing SeLoadDriverPrivilege for privilege escalation
Oscar Mallo

0x01 – Preamble In Windows operating systems, it is well known that assigning certain privileges to user accounts without administration permissions can result in local privilege[...]

Read more
Interactive Shell via Bluetooth
Interactive Shell via Bluetooth
Juan Manuel Fernandez

[...]

Read more
Pentests in restricted VDI environments
Pentests in restricted VDI environments
Viatcheslav Zhilin

A common scenario during an assessment or a pentesting is starting it from a VDI environment, focused towards “what could an insider or an attacker who has stolen a worker[...]

Read more
1 7 8 9 10 11 12 13
Advanced penetration testing services