środa, 19 czerwca 2019

Basic protocol fuzzing

Below you will find few notes related to basic protocol fuzzing. Here we go...
Czytaj więcej »
Autor: o Brak komentarzy:
Etykiety: , , , , , ,

poniedziałek, 17 czerwca 2019

Unquoted path for CA Deploy Agents

Sometimes during pentest(s) we can find some not-so-usual ports open. Few of them you can find described here or here in latest posts. But today we will check "that 6600/tcp" port open. Here we go...

Czytaj więcej »
Autor: o Brak komentarzy:
Etykiety: , , , ,

niedziela, 9 czerwca 2019

Few more quick tests

Last time I described small script you can use (or create) during your pentests. Below you will find a little continuation of the paths started last time. So...
Czytaj więcej »
Autor: o Brak komentarzy:
Etykiety: , , , ,

piątek, 31 maja 2019

Lazy Enlil

Sometimes during pentests we can find pretty similar "environment(s)". By environment - this time - I mean open ports, possible (mis)configuration bugs or default passwords still used for access the target box/app. That's why I decided to start 'something new'...

Czytaj więcej »
Autor: o Brak komentarzy:
Etykiety: , , , , , , , , ,

sobota, 18 maja 2019

Reading Kibana

In the meantime I decided to check one of the webapp we can find during internal infrastructure pentests - Kibana. Below you will find the details.
Czytaj więcej »
Autor: o Brak komentarzy:
Etykiety: , , , , , , ,

Quick review of my CTFs

Below you will find a quick summary for the CTF games I described on the blog.
Czytaj więcej »
Autor: o Brak komentarzy:
Etykiety: , , ,

czwartek, 9 maja 2019

Crashing DeviceNet Builder

Below you will find few details from just another fuzzing session - this time I tried DeviceNet Builder (2.04) from DeltaElectronics. Here we go...
Czytaj więcej »
Autor: o Brak komentarzy:
Etykiety: , , ,
Subskrybuj: Posty (Atom)