Welcome to Nettitude Labs - LRQA Nettitude Labs

CVE-2019-9702: Symantec Encryption Desktop Local Privilege Escalation – Exploiting an Arbitrary Hard Disk Read/Write Vulnerability Over NTFS

Note: These vulnerabilities remain unpatched at the point of publication. We have been working with Symantec to try and help them to fix this since our initial private disclosure in July 2017 (full timeline at [...]

By Kyriakos Economou|November 28, 2017|

PoshC2 v3 with SOCKS Proxy (SharpSocks)

OVERVIEW We’ve been working on quite a few changes since the release of PoshC2 v2, our public Command & Control framework, back in December 2016. In this blog we’ll talk about the top changes and [...]

By Rob Maslen and Ben Turner|November 15, 2017|

DerbyCon 2017 CTF Write Up

The excellent Derbycon 2017 has just come to an end and, just like last year, we competed in the Capture The Flag competition, which ran for 48 hours from noon Friday to Sunday. As always, [...]

By Spicy Weasel|September 28, 2017|

Lifting the clouds from cloud investigations

Nettitude’s IR team recently had an opportunity to investigate a breach in a cloud environment. The client had recently adopted Office 365 in a hybrid configuration to host a range of Microsoft services for users, [...]

By Adrian Shaw|July 14, 2017|

CVE-2017-8116: Teltonika router unauthenticated remote code execution

We sometimes require internet connectivity in situations where a traditional connection is not easily possible. 4G routers provide an answer to this problem by providing connectivity to a variety of devices and systems without the [...]

By Adam Jeffreys|June 20, 2017|