OUR LATEST RESEARCH
PoshC2 – Introducing Native macOS Implants
Over the past few years, we have seen an increase in the number of macOS environments we are asked to assess. While PoshC2 has “supported” macOS by way of Python since the very early days, [...]
VM Detection Tricks, Part 3: Hyper-V RAW Network Protocol
This month's virtual machine detection trick involves detecting the presence of the Hyper-V RAW network protocol. This protocol is a special type of winsock protocol that is utilized by many of the guest features, allowing [...]
VM Detection Tricks, Part 2: Driver Thread Fingerprinting
This year we're documenting a series of new and as-yet undocumented VM detection tricks. These detection tricks will be focused on 64-bit Windows 10 or Windows Server 2019 guests, targeting a variety of VM platforms. [...]
CVE-2020-24550: Open Redirect in Episerver Find
During the course of our work, we discovered an open redirect vulnerability in Episerver Find. This has been assigned CVE-2020-24550. The Episerver platform includes content management, e-commerce functionality, marketing automation, and search and navigation capabilities. [...]
Introducing FComm – C2 Lateral Movement
Over the past few years, we have found a few edge cases where the traditional lateral movement communication methods contained within PoshC2 did not suit particular client environments. To solve this problem, we have created [...]