Welcome to Nettitude Labs
You are here: Home
EMEA
1 Jephson Court
Trancred Close
Leamington Spa
Warwickshire
CV31 3RZ
Trancred Close
Leamington Spa
Warwickshire
CV31 3RZ
Americas
50 Broad Street
Suite 403
New York
NY
10004
Suite 403
New York
NY
10004
CVE-2019-12750: Symantec Endpoint Protection Local Privilege Escalation – Part 2
/0 Comments/in Blog /by Kyriakos EconomouIn this post we will walk you through a more sophisticated method of exploiting CVE-2019-12750. This is a local privilege escalation vulnerability that affects Symantec Endpoint Protection. The method of exploitation described in this post works, at the time of writing, on all versions of Windows.
CVE-2019-12750: Symantec Endpoint Protection Local Privilege Escalation – Part 1
/0 Comments/in Blog /by Kyriakos EconomouA malicious application can take advantage of a vulnerability in Symantec Endpoint Protection to leak privileged information and/or execute code with higher privileges, thus taking full control over the affected host.
Introducing SharpSocks v2.0
/0 Comments/in Blog, SharpSocks /by Rob MaslenIt has been over a year since we released the first version of SharpSocks, our proxy-aware reverse HTTP tunnelling SOCKS proxy. This post aims to provide a State of the Nation update for users. It details some of our experiences using it, how the experience and performance has been massively improved, and some of our […]
Introducing PoshC2 v5.0
/0 Comments/in Blog, PoshC2 /by Rob BonePoshC2 v5.0 is here and there are significant changes and improvements that we’re very excited to reveal! There’s been a move to Python3, much improved documentation, significant functionality and quality of life improvements, and more. Read on for a detailed description of it all! Repositories We have had a bit of a change around with […]
How to Exfiltrate AWS EC2 Data
/0 Comments/in Blog /by Iraklis MathiopoulosAs Cloud infrastructure has become common, it has also become common for penetration testers to find themselves attacking clients that rely on e.g. AWS or Azure environments for handling, storing, and processing critical data. There are many new and interesting attack paths an adversary can take once they have obtained some sort of access to […]
Maritime Malware Campaigns – Document Payloads
/0 Comments/in Blog /by Joel SnapeAs part of our research into threats facing the marine and offshore sector, we recently uncovered an ongoing malware campaign. It makes use of specific maritime industry related document lures, and attempts to evade detection by disguising command and control traffic as traffic to legitimate maritime-related businesses. From our examination of the documents being sent, […]