Lua-Resty-JWT Authentication Bypass I was writing some challenges for PacketWars at TROOPERS22. One was intended to be... 2023-10-10 23:14:47 | 阅读: 16 | 收藏 | Insinuator.net - insinuator.net jwe alg library whitelist cdbattags

Breaking DPD Parcel Tracking This blog post is the continuation of our parcel research. We already reported abo... 2023-9-13 00:28:6 | 阅读: 19 | 收藏 | Insinuator.net - insinuator.net dpd parcel dhl prompts limiting

Identification of (malicious) modifications in memory-mapped image files I’m happy to announce the publication of the paper Windows memory forensics: Identificatio... 2023-9-6 21:51:8 | 阅读: 14 | 收藏 | Insinuator.net - insinuator.net vad windows memory

Select * from OpenStack – A Steampipe Plugin for OpenStack Although, more and more companies start to move their IT-Infrastructure from on-premise to... 2023-8-2 17:45:18 | 阅读: 14 | 收藏 | Insinuator.net - insinuator.net steampipe openstack cloud software security

All your parcel are belong to us – Talk at Troopers 2023 At Troopers 2023, we gave a talk on how to attack DHL parcel tracking information based on... 2023-7-11 22:9:38 | 阅读: 16 | 收藏 | Insinuator.net - insinuator.net postal parcel dhl parcels population

The DRACO Stream Cipher In symmetric-key cryptography, we typically distinguish two types of encryption schemes: b... 2023-6-21 21:15:10 | 阅读: 18 | 收藏 | Insinuator.net - insinuator.net draco ciphers security matthias volatile

Jasper Reports Library Code Injection During the past year we had several projects where our target application used Jasper Repo... 2023-6-13 22:8:10 | 阅读: 40 | 收藏 | Insinuator.net - insinuator.net jasper library reverse

IMF Conference 2023 in Munich The IMF Conference is the International Conference on IT Security Incident Managem... 2023-5-26 02:3:59 | 阅读: 14 | 收藏 | Insinuator.net - insinuator.net ceph software osd vampyr bluestore

AD /Azure Security Track on Troopers 23 Hi!We’re excited to announce the nearly complete composition of the Active Direct... 2023-5-5 16:28:20 | 阅读: 13 | 收藏 | Insinuator.net - insinuator.net troopers windows announce schmitt martin

Hack In The Box Security Conference 2023 @ Amsterdam – Summary In this blog post, we are sharing summaries of talks from the Hack in the Box Conference i... 2023-5-4 17:12:48 | 阅读: 38 | 收藏 | Insinuator.net - insinuator.net security xrp talks attacker

Hilarious Buffer Overflow Mitigation and TCL Injection in CheckPoint Gaia Portal Hey there,I am going to disclose two bug classes I found a while ago in CheckPoin... 2022-12-16 18:5:17 | 阅读: 28 | 收藏 | Insinuator.net - insinuator.net tcl overflow remote checkpoint username

Some experiments with Process Hollowing Process Hollowing is a technique used by various malware families (such as FormBook, Trick... 2022-9-30 05:20:43 | 阅读: 38 | 收藏 | insinuator.net memory windows syswow64 mapped nounmap

Spymax: The android RAT and it works like that…. 2022-9-7 19:23:29 | 阅读: 14 | 收藏 | insinuator.net

Whitepaper Endpoint Management & Monitoring Solutions Released Over the course of the last 2 years we preformed vulnerability research on several... 2022-8-10 19:36:33 | 阅读: 28 | 收藏 | insinuator.net whitepaper xi preformed dsm broadcom

Security Advisories for Broadcom Automic Automation (UC4) In April 2021 we reported seven vulnerabilities in Broadcom Automic Automation (UC4) 12.3.... 2022-6-9 22:26:38 | 阅读: 30 | 收藏 | insinuator.net uc4 attacker broadcom ernw privileges

Solving client-side controls once and for all Missing server-side validation consistently scores a place in the OWASP Top 10. Br... 2022-4-1 15:13:31 | 阅读: 21 | 收藏 | insinuator.net xssrf security client insinuator usability

A Tale of an OFTP2 Vulnerability This is a guest post from Thomas Smits.A long time ago in a galaxy far, far away…... 2022-3-25 00:36:15 | 阅读: 33 | 收藏 | insinuator.net oftp2 odette client sfiddsn security

Release of PTE Analysis plugins for Volatility 3 I’m happy to announce the release of several plugins for Volatility 3 that allow y... 2022-1-1 06:10:13 | 阅读: 43 | 收藏 | insinuator.net bitfield unset ptemalfind windows mmpte

Change Your BLE Passkey Like You Change Your Underwear Using a static passkey for Bluetooth Low Energy pairing is insecure. Recent versio... 2021-10-21 22:01:41 | 阅读: 28 | 收藏 | insinuator.net pairing passkey smp l2cap

ManiMed: Ypsomed AG – mylife YpsoPump System Vulnerabilities Manipulating Medical DevicesThe Federal Office for Information Security (BSI) aim... 2021-07-29 17:01:21 | 阅读: 49 | 收藏 | insinuator.net mylife bsi security pump ypsopump