
Recently, Component Object Model (COM) has come back in a big…
https://labs.nettitude.com/wp-content/uploads/2018/07/word-image-2.gif
1239
2268
Rob Maslen
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Rob Maslen2018-07-10 13:23:432018-07-26 15:02:38COM and the PowerThIEf
We have recently disclosed a list of vulnerabilities to Sophos…
https://labs.nettitude.com/wp-content/uploads/2018/06/sophos-safeguard-privilege-escalation.png
416
545
Kyriakos Economou
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Kyriakos Economou2018-06-25 22:47:502018-06-26 13:23:03CVE-2018-6851 to CVE-2018-6857: Sophos Privilege Escalation Vulnerabilities
Affected Software: IPConfigure Orchid Core VMS (All versions…
https://labs.nettitude.com/wp-content/uploads/2018/06/word-image-2.png
615
1104
Sanjiv Kawa
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Sanjiv Kawa2018-06-14 13:33:152018-06-20 13:07:57CVE-2018-10956: Unauthenticated Privileged Directory Traversal in IPConfigure Orchid Core VMS
Prowl was initially designed as an in house tool to aid engagements…
https://labs.nettitude.com/wp-content/uploads/2018/06/word-image.png
1384
1424
Matthew Pickford
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Matthew Pickford2018-06-05 14:05:382018-06-05 15:08:09Introducing Prowl
Nettitude’s red team engagements are typically designed to…
https://labs.nettitude.com/wp-content/uploads/2018/05/mod_python.gif
164
268
Tom Wilson
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Tom Wilson2018-05-31 13:00:412018-05-31 14:12:30Apache mod_python for red teams
We’ve recently been conducting some reverse engineering and…
https://labs.nettitude.com/wp-content/uploads/2018/04/word-image-2.png
676
1174
Tom Wilson
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Tom Wilson2018-04-11 16:35:422018-04-12 15:41:27WinDbg: using pykd to dump private symbols
A SQL injection vulnerability exists in REDCap versions 7.0.0…
https://labs.nettitude.com/wp-content/uploads/2018/02/DatabaseTables-e1518097683931.png
141
258
Jack Hall
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Jack Hall2018-02-08 13:45:552018-02-08 13:50:24CVE-2017-7351: REDCap 7.0.0 - 7.0.10 SQL Injection
Users may find it difficult to host a PoshC2 server as it requires…
https://labs.nettitude.com/wp-content/uploads/2018/01/word-image-1.png
216
762
Ben Turner
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Ben Turner2018-01-31 14:10:052018-07-26 15:02:13Making PoshC2 More Accessible With a $5 VPS
Note: These vulnerabilities remain unpatched at the point of…
https://labs.nettitude.com/wp-content/uploads/2017/11/word-image-17.png
209
624
Kyriakos Economou
https://labs.nettitude.com/wp-content/uploads/2016/07/NETT_LABS_LOGO-300x139.png
Kyriakos Economou2017-11-28 13:52:122017-11-28 18:00:12Symantec Encryption Desktop Local Privilege Escalation - Exploiting an Arbitrary Hard Disk Read/Write Vulnerability Over NTFS