Welcome to Nettitude Labs

SharpSocks

PoshC2 v3 with SOCKS Proxy (SharpSocks)

/

Wednesday 15 November 2017

OVERVIEW We’ve been working on quite a few changes since the…

https://scontent-lga3-1.xx.fbcdn.net/v/t34.0-12/22016576_10159281578705621_359956649_n.jpg?oh=9d6de859e618e70b6eb96036eef257a5&oe=59CD0A41

DerbyCon 2017 CTF Write Up

/

Thursday 28 September 2017

The excellent Derbycon 2017 has just come to an end and, just…

Lifting the clouds from cloud investigations

/

Friday 14 July 2017

Nettitude’s IR team recently had an opportunity to investigate…

CVE-2017-8116: Teltonika router unauthenticated remote code execution

/

Tuesday 20 June 2017

We sometimes require internet connectivity in situations where…

BSides Edinburgh 2017 Crypto Contest Write Up

/

Sunday 23 April 2017

Recently, at the inaugural BSides Edinburgh, Ben Turner and…

Shadow Brokers Exploit Table

A quick analysis of the latest Shadow Brokers dump

/

Monday 17 April 2017

Just in time for Easter, the Shadow Brokers released the latest…

Disassembly

Carbon Black - Security Advisories: CVE-2016-9570, CVE-2016-9568 and CVE-2016-9569

/

Thursday 13 April 2017

Nettitude have discovered three vulnerabilities in Carbon Black;…

Sample LogParser SQL query

Effectively analysing sysmon logs

/

Thursday 9 March 2017

We previously covered setting up and using sysmon (System Monitor),…

Putting attackers in hi vis jackets with sysmon

/

Thursday 16 February 2017

Background Sysmon (short for system monitor) has been part of…