AxeOS CSRF Vulnerability
Using CSRF Attack to update the Payout Address on BitAxe Bitcoin Miners
Showing only posts in pentesting. Show all posts.
Pwnboxes
Simple method to define and build security testing containers in Podman
Penetration Testing Training Labs
Labs to learn penetration testing and offensive security
Penetration Test Reports and Vulnerability Aggregation
Penetration test reports, aggregating findings and thinking more deeply.
Python Tools Using ldap3 and Issues with Channel Binding and Signing
Fixing issues in common tools with Python ldap3 when connecting to Domain Controllers with LDAP signing and binding enabled.
Internal Top Five
A series of blog Posts for Claranet Cyber Security about common high impact issues discoverd on internal penetration tests and how to fix them.
Relaying to Active Directory Certificate Services (ADCS) and Resource Based Constrained Delegation (RBCD)
Getting Local Administrator access with NTLM Relay attacks against ADCS and RBCD attacks.