Recent News
Scanning for Java Deserialization Vulnerabilities in web applications with Burp Suite
Recently an analysis of Foxglove Security on a vulnerability on Java Deserialization disclosed in January…
VPN Brute forcer
vpnc-brute is a modified version of the VPNC client (https://www.unix-ag.uni-kl.de/~massar/vpnc/) that add capabilities to automatically…
Pentesting with Serialized Java Objects and Burp Suite
Some days ago, I had to test a web application consisting in a Java applet.…
WD Passport Ultra Linux utilities (Unlock, Secure Erase, Password Change)
Recently i bought an external USB 3.0 HD with hardware encryption to always carry with…
Windows To Go on USB 3.0 controllers
Some days ago we decided to test Windows To Go. After installing Windows 8.1 on…
HP System Management Homepage JustGetSNMPQueue Command Injection without Metasploit
Some days ago we tried to use the "exploit/multi/http/hp_sys_mgmt_exec" Metasploit module on one of our…
McAfee Virus Scan Enterprise password hashing demystified
McAfee Virus Scan Enterprise has a feature to protect settings modification from server admins by…