Blog Archives - Page 10 of 16 - LRQA Nettitude Labs

CVE-2019-9702: Symantec Encryption Desktop Local Privilege Escalation – Exploiting an Arbitrary Hard Disk Read/Write Vulnerability Over NTFS

Note: These vulnerabilities remain unpatched at the point of publication. We have been working with Symantec to try and help them to fix this since our initial private disclosure in July 2017 (full [...]

By Kyriakos Economou|2017-11-28T13:52:12+00:00November 28, 2017|

PoshC2 v3 with SOCKS Proxy (SharpSocks)

OVERVIEW We’ve been working on quite a few changes since the release of PoshC2 v2, our public Command & Control framework, back in December 2016. In this blog we’ll talk about the top [...]

By Rob Maslen and Ben Turner|2017-11-15T14:43:34+00:00November 15, 2017|

DerbyCon 2017 CTF Write Up

The excellent Derbycon 2017 has just come to an end and, just like last year, we competed in the Capture The Flag competition, which ran for 48 hours from noon Friday to Sunday. [...]

By Spicy Weasel|2017-09-28T15:06:14+00:00September 28, 2017|

Lifting the clouds from cloud investigations

Nettitude’s IR team recently had an opportunity to investigate a breach in a cloud environment. The client had recently adopted Office 365 in a hybrid configuration to host a range of Microsoft services [...]

By Adrian Shaw|2017-07-14T12:25:48+00:00July 14, 2017|

CVE-2017-8116: Teltonika router unauthenticated remote code execution

We sometimes require internet connectivity in situations where a traditional connection is not easily possible. 4G routers provide an answer to this problem by providing connectivity to a variety of devices and systems [...]

By Adam Jeffreys|2017-06-20T15:10:39+00:00June 20, 2017|

BSides Edinburgh 2017 Crypto Contest Write Up

Recently, at the inaugural BSides Edinburgh, Ben Turner and I made the trek up to Edinburgh to see our colleague Neil Lines present his talk “The Hunt for The Red DA”. I can’t say that I am [...]

By Rob Maslen|2017-04-23T19:32:35+00:00April 23, 2017|

A quick analysis of the latest Shadow Brokers dump

Just in time for Easter, the Shadow Brokers released the latest installment of an NSA data dump, which contained an almost overwhelming amount of content - including, amongst other things, a number of [...]

By Nettitude Labs|2020-12-09T14:55:13+00:00April 17, 2017|

Carbon Black – Security Advisories: CVE-2016-9570, CVE-2016-9568 and CVE-2016-9569

Nettitude have discovered three vulnerabilities in Carbon Black; CVE-2016-9570, CVE-2016-9568 and CVE-2016-9569. Two of these have been patched at the time of writing. CVE-2016-9570 Module: cb.exe (SRC-149) Version: 5.1.1.60603 Bug Type: Read-Out-Of-Bounds Impact: DoS Prerequisites: [...]

By Kyriakos Economou|2017-04-13T14:38:46+00:00April 13, 2017|

Effectively analysing sysmon logs

We previously covered setting up and using sysmon (System Monitor), which is part of the Sysinternals suite from Microsoft. In this article, we’ll walk through analysing the logs using Microsoft’s LogParser utility. […]

By Adrian Shaw|2017-03-09T12:08:48+00:00March 9, 2017|

Putting attackers in hi vis jackets with sysmon

Background Sysmon (short for system monitor) has been part of the Sysinternals suite for several years. It comprises kernel-mode driver and a Windows service that monitors system events and writes those to Windows [...]

By Adrian Shaw|2017-02-16T19:05:44+00:00February 16, 2017|