Exploring Unified Diagnostic Services with uds-zoo Today we are releasing a new project that will be useful for learning and exploration of attacking a... 2021-10-29 22:47:45 | 阅读: 18 | 收藏 | www.atredis.com uds vehicle 14229 network handful

Sophos UTM Preauth RCE: A Deep Dive into CVE-2020-25223 OverviewOn a recent client engagement I was placed in a Virtual Private Cloud (VPC) instance with th... 2021-08-19 03:30:00 | 阅读: 127 | 收藏 | www.atredis.com confd 510 sophos9 webadmin plx

Le Zeek, C’est Chic: Using an NSM for Offense 2021-05-21 01:47:58 | 阅读: 94 | 收藏 | www.atredis.com

CVE-2021-32030: ASUS GT-AC2900 Authentication Bypass 2021-05-06 20:46:18 | 阅读: 144 | 收藏 | www.atredis.com ifttt asus alexa endian ac2900

NANDcromancy: Live Swapping NAND Flash 2021-04-27 03:39:19 | 阅读: 118 | 收藏 | www.atredis.com nand cfe ffffffff loader tap

QEMU and U: Whole-system tracing with QEMU customization 2021-04-16 03:06:30 | 阅读: 100 | 收藏 | www.atredis.com tcg pstart translated paddr processes

Authenticated RCE in Pydio (Forever-Day) -- CVE-2020-28913 Pydio (formerly AjaXplorer) is an open source web application for remotely managing and sharing file... 2020-12-07 23:00:00 | 阅读: 59 | 收藏 | www.atredis.com pydio atredis php ajxp sox

A Watch, a Virtual Machine, and Broken Abstractions 2020-11-18 02:00:00 | 阅读: 35 | 收藏 | www.atredis.com tvm garmin firmware prg machine

Flamingo Captures Credentials Far too many products will blindly spray credentials across the network as part of discovery, monito... 2020-01-28 00:04:21 | 阅读: 50 | 收藏 | www.atredis.com flamingo ssh responder security

Use the Source, Luke 2019-08-28 02:00:36 | 阅读: 41 | 收藏 | www.atredis.com client devs software chairs centric

CVE-2019-4061: Harvesting Data from BigFix Relay Servers 2019-03-19 00:45:48 | 阅读: 39 | 收藏 | www.atredis.com bigfix 52311 masthead attacker

CVE-2019-5513: Information Leaks in VMWare Horizon 2019-03-16 03:07:06 | 阅读: 60 | 收藏 | www.atredis.com broker straight mathews facing

CVE-2018-7117: A Somewhat Accidental XSS in HPE iLO At Atredis Partners, we often use dedicated lab networks for testing devices. This helps isolate th... 2019-03-09 03:45:00 | 阅读: 35 | 收藏 | www.atredis.com network dhcp ilo attacker hpe

Fun with SolarWinds Orion Cryptography IntroductionWe run into a wide variety of network management solutions during our security assessmen... 2018-10-26 17:21:42 | 阅读: 43 | 收藏 | www.atredis.com orion network database ncm username

Revolving Door Pentesting 2018-10-19 13:07:49 | 阅读: 44 | 收藏 | www.atredis.com firm firms client attackers rotating

CVE-2018-0952: Privilege Escalation Vulnerability in Windows Standard Collector Service 2018-08-22 05:50:42 | 阅读: 47 | 收藏 | www.atredis.com collector etl procmon windows

GE Healthcare MAC 5500 Vulnerabilities A few months ago, Atredis Partners had an opportunity to look at the GE Healthcare MAC5500 Electroca... 2018-05-16 01:29:05 | 阅读: 37 | 收藏 | www.atredis.com 320an silex sds injection

Escalating Privileges with CylancePROTECT 2018-05-02 04:23:40 | 阅读: 50 | 收藏 | www.atredis.com cyupdate windows cylancesvc cylanceui