CVE-2018-10956: Unauthenticated Privileged Directory Traversal in IPConfigure Orchid Core VMS

/
Affected Software: IPConfigure Orchid Core VMS (All versions…

Introducing Prowl

/
Prowl was initially designed as an in house tool to aid engagements…

Apache mod_python for red teams

/
Nettitude’s red team engagements are typically designed to…

WinDbg: using pykd to dump private symbols

/
We’ve recently been conducting some reverse engineering and…

CVE-2017-7351: REDCap 7.0.0 - 7.0.10 SQL Injection

/
A SQL injection vulnerability exists in REDCap versions 7.0.0…

Making PoshC2 More Accessible With a $5 VPS

/
Users may find it difficult to host a PoshC2 server as it requires…
SharpSocks

PoshC2 v3 with SOCKS Proxy (SharpSocks)

/
OVERVIEW We’ve been working on quite a few changes since the…
https://scontent-lga3-1.xx.fbcdn.net/v/t34.0-12/22016576_10159281578705621_359956649_n.jpg?oh=9d6de859e618e70b6eb96036eef257a5&oe=59CD0A41

DerbyCon 2017 CTF Write Up

/
The excellent Derbycon 2017 has just come to an end and, just…