Welcome to Nettitude Labs

CVE-2018-5240: Symantec Management Agent (Altiris) Privilege Escalation

/

Wednesday 12 September 2018

During a recent red team exercise, we discovered a vulnerability…

CVE-2018-12897: Solarwinds Dameware Mini Remote Control Local SEH Buffer Overflow

/

Wednesday 5 September 2018

Dameware Mini Remote Control (MRC) is a remote administration…

Introducing Scrounger - iOS and Android mobile application penetration testing framework

/

Thursday 23 August 2018

Scrounger is a modular tool designed to perform the routine tasks…

Extending C2 Lateral Movement – Invoke-Pbind

/

Thursday 16 August 2018

Invoke-Pbind is a mini post exploitation framework written in…

Using PoolTags to Fingerprint Hosts

/

Wednesday 8 August 2018

Commonly, malware will fingerprint the host it executes on, in…

$C:\Users\coakley\Desktop\labs.nettitude.com\Blogs\2018\Avecto\Pictures\Avecto_Block.png$

CVE-2017-16245 & CVE-2017-16246: Avecto Defendpoint Multiple Vulnerabilities

/

Monday 30 July 2018

Avecto Defendpoint is an endpoint protection product which, according…

$Z:\Desktop\pyshc2.png$

Python Server for PoshC2

/

Thursday 26 July 2018

We are delighted to announce the release of our PoshC2 Python…

COM and the PowerThIEf

/

Tuesday 10 July 2018

Recently, Component Object Model (COM) has come back in a big…

CVE-2018-6851 to CVE-2018-6857: Sophos Privilege Escalation Vulnerabilities

/

Monday 25 June 2018

We have recently disclosed a list of vulnerabilities to Sophos…