During some internal pentests performed few weeks ago I found an SQL injection (postauth) bug in "latest" AdvantechWeb/SCADA (9.1.5U). Below you'll find more details about it. Here we go...
code16
poniedziałek, 8 stycznia 2024
sobota, 6 stycznia 2024
Healthy PostAuth RCE in FortiADC 7.4.0
środa, 6 grudnia 2023
The Hack Summit 2023 - Online presentation
poniedziałek, 4 grudnia 2023
Monitoring SUFF - Part 2
During one night I decided to continue my tests with suff.py script described before. This time I decided to run it with FortiWeb VM (v7.4.0 build577) so below you'll find few notes about it. Here we go...
sobota, 2 grudnia 2023
Monitoring SUFF
Few months ago we talked about Simple Universal Fortigate Fuzzer. Small script created in Python to mutate commands we'd like to send to Forti CLI. Today we'll check how to grab few "log details" for our future analysis. Here we go...
wtorek, 28 listopada 2023
Windows Embedded Eternally Blue
Few weeks ago I was asked to help a bit with exploitation of MS17_010 for one of the hosts found in the pentest project scope. Below you'll find more details about it. Here we go...
niedziela, 14 maja 2023
Simple Universal Fortigate Fuzzer
Today we'll finish the topic started few months ago: Simple Universal Fortigate Fuzzer. Below youl'l find the details about it. Here we go...
sobota, 29 kwietnia 2023
Fuzzing Fortigate 7
Continuing my journey with the Mutiny Fuzzing Framework one of the apps I decided to test was a Fortigate 7.x VM (what I initially described during the last TheHackSummit conference). Below you'll find more details about it. Here we go...
sobota, 22 kwietnia 2023
Protocols Mutiny
From time to time I'm posting here some of the bugs I found in the past during my (file format) fuzzing adventures. This time we'll (again) try to focus a bit more on the protocol fuzzing scenarios. To continue - we will use Mutiny Fuzzing Framework. Here we go...
czwartek, 20 kwietnia 2023
Bruting FortiGates
After my previous adventures with FortiGate VM's I decided to check it again and finally finish some of the ideas I was talking about during the last The Hack Summit Conference (PL, 2022). One of them was to bypass FortiGate's "anti-bruteforce protection". Below you'll find the details about it. Here we go...