Welcome to Nettitude Labs

Four stages of the exploit kit infection chain [1]

An analysis of the RIG exploit kit

/

Thursday 27 October 2016

Over the last few weeks, we have observed an increase of RIG…

Windows Explorer default permissions

Analysing the NULL SecurityDescriptor kernel exploitation mitigation in the latest Windows 10 v1607 Build 14393

/

Thursday 13 October 2016

We recently discovered a new and quietly released Windows kernel…

From macro to malware - a step by step analysis

/

Monday 3 October 2016

We recently received an email which contained a malicious Word…

DerbyCon 2016 CTF Write Up

/

Tuesday 27 September 2016

We've just got back to sunny England after spending a fantastic…

ZeroPress - A WordPress Vulnerability Hunter

/

Friday 16 September 2016

Finding WordPress plugin vulnerabilities is like shooting fish…

Rocktastic: a word list on steroids

/

Thursday 8 September 2016

Bigger isn’t always better, but sometimes it is. If you need…

NTLM hashes

Introducing 'XSS Payloads' repository: Cross Site Scripting doesn't have to be boring

/

Friday 2 September 2016

Sometimes, particularly when dealing with a system perimeter, there's…

What is the jailbreak for iOS 9.3.3 actually doing?

/

Friday 26 August 2016

Many people who jailbreak their devices are unaware of the vulnerabilities…

Blog, Security Blog

Nettitude Labs release PoshC2, a command and control framework

/

Tuesday 12 July 2016

PoshC2 is a proxy aware command and control framework written…