Vulnerability Disclosure: Command Injection in Kemp LoadMaster Load Balancer (CVE-2024-7591) While conducting security research, I identified a critical vulnerability in Kemp’s LoadMa... 2024-11-27 17:17:47 | 阅读: 1 | 收藏 | Insinuator.net - insinuator.net wui pbinaryname progs kemp equalsign

Vulnerability Disclosure: Authentication Bypass in Vaultwarden versions < 1.32.5 During a penetration test for a customer, we briefly assessed Vaultwarden, an open-source... 2024-11-22 18:50:48 | 阅读: 1 | 收藏 | Insinuator.net - insinuator.net username vaultwarden errorevent eventtype

Announcement: Progress / Kemp LoadMaster CVE-2024-7591 Hey everybody,during a recent Red Teaming engagement Marius Walter from ERNW foun... 2024-9-9 15:15:9 | 阅读: 7 | 收藏 | Insinuator.net - insinuator.net everybody marius ernw walter realistic

Disclosure: Potential Limitations of Apple ADE in Corporate Usage Scenarios Apple Automated Device Enrollment (ADE) is presented as a way to automate and simplify the... 2024-9-3 20:51:32 | 阅读: 4 | 收藏 | Insinuator.net - insinuator.net ernw enrollment mdm omitempty activation

CrowdStrike: What is the worldwide BSOD all about? This article is about the massive BSOD triggered by CrowdStrike worldwide on July 19. Anal... 2024-8-20 16:42:10 | 阅读: 5 | 收藏 | Insinuator.net - insinuator.net crowdstrike software windows security analysis

Disclosure: Apple ADE – Network Based Provisioning Bypass Mobile Device Management (MDM) solutions are used to centrally manage mobile devices in co... 2024-8-9 16:28:58 | 阅读: 8 | 收藏 | Insinuator.net - insinuator.net ign pkt cloudapp qd

BMBF UNCOVER – Monitoring von Sicherheitsvorfällen in Fahrzeugen English AbstractFor the realization and introduction of autonomous vehicles, the safe int... 2024-6-21 22:42:45 | 阅读: 3 | 收藏 | Insinuator.net - insinuator.net monitoring draco durch matthias des

Active Directory & Entra ID Security Track at TROOPERS24 – Agenda Preview Hi,are you curious about the agenda of the Active Directory- & Entra ID security... 2024-6-14 16:59:46 | 阅读: 8 | 收藏 | Insinuator.net - insinuator.net agenda troopers24 analysis knudsen shang

Security Advisory: Achieving PHP Code Execution in ILIAS eLearning LMS before v7.30/v8.11/v9.1 During my Bachelor’s thesis, I identified several XSS vulnerabilities and a PHP Code Execu... 2024-5-22 18:24:23 | 阅读: 12 | 收藏 | Insinuator.net - insinuator.net ilias php ernw privileges

Linux Character Devices: Exploring systemd-run and pkexec In this blog post, we quickly look into issues involving character devices. As is typical... 2024-5-14 16:14:29 | 阅读: 6 | 收藏 | Insinuator.net - insinuator.net pts pty df pkexec zzzzzzzz

Is Google Play Protect a Reliable Malware Detector? Google Play Protect is a built-in Android solution that enhances devices’ security. Its ma... 2024-5-3 22:32:48 | 阅读: 9 | 收藏 | Insinuator.net - insinuator.net malicious anubis security apk keystore

Is Google Play Protect a Reliable Defense Mechanism? Google Play Protect is a built-in Android solution that enhances devices’ security. Its ma... 2024-5-3 22:32:48 | 阅读: 12 | 收藏 | Insinuator.net - insinuator.net malicious anubis security apk keystore

Vulnerability in Jitsi Meet: Meeting Password Disclosure affecting Meetings with Lobbies During a customer project, we identified a logic flaw in Jitsi Meet, an open-sourc... 2024-5-2 14:21:0 | 阅读: 12 | 收藏 | Insinuator.net - insinuator.net jitsi meeting lobby xmpp invited

Breaking GLS Parcel Tracking Recently, we held a talk at the Winterkongress1 of the Digitale Gesellschaft Schwe... 2024-4-25 18:49:51 | 阅读: 10 | 收藏 | Insinuator.net - insinuator.net parcel gls meeting geographic

BSI Publishes Windows 10 SiSyPHuS Reports: Application Compatibility Infrastructure, Microsoft Defender Antivirus ETW Usage and Device Setup Manager Service The German Federal Office for Information Security (BSI – Bundesamt für Sicherheit... 2024-4-16 15:18:43 | 阅读: 11 | 收藏 | Insinuator.net - insinuator.net analysis furthermore dsmsvc microsoft security

Breaking UPS Parcel Tracking Today, we describe our findings at United Parcel Service of America, Inc. (UPS), a... 2024-4-10 21:22:1 | 阅读: 10 | 收藏 | Insinuator.net - insinuator.net ups parcel reaction ernw

I know what you ordered last summer @ Winterkongress 2024 Dennis and I already published blog posts about our research project dealing with... 2024-4-3 19:45:44 | 阅读: 14 | 收藏 | Insinuator.net - insinuator.net winterthur journalists security swiss

Considerations on AI-Security – Part I: Introduction and Nondeterminism Hey there!This is the first blog post in a series about issues we think are currently rel... 2024-2-7 00:48:49 | 阅读: 15 | 收藏 | Insinuator.net - insinuator.net security chatgpt llm bots

Student Project – Audit Framework IntroductionIn 2021, ERNW collaborated with Hochschule Mannheim for their CEP (Cy... 2023-10-20 16:38:17 | 阅读: 14 | 收藏 | Insinuator.net - insinuator.net highlights ernw github jungbusch goja

c0c0n 2023 – A Short Retrospective Two weeks ago, I was at the c0c0n conference in Cochin (India). This conference is... 2023-10-17 23:21:43 | 阅读: 17 | 收藏 | Insinuator.net - insinuator.net security software windows c0c0n