Technical Advisory: Pulse Connect Secure – RCE via Uncontrolled Archive Extraction – CVE-2021-22937 (Patch Bypass) Vendor: Ivanti Pulse SecureVendor URL: https://www.pulsesecure.net/Versions affected: Pulse Co... 2021-08-06 00:59:00 | 阅读: 160 | 收藏 | research.nccgroup.com pulse pcs 8260 ivanti hackerone

Technical Advisory – Sunhillo SureLine Unauthenticated OS Command Injection (CVE-2021-36380) Vendor: Sunhillo Vendor URL: https://www.sunhillo.com/ Versions affected... 2021-07-27 00:28:47 | 阅读: 95 | 收藏 | research.nccgroup.com attacker sunhillo sureline liam glanfield

Practical Considerations of Right-to-Repair Legislation BackgroundFor some time there has been a growing movement amongst consumers who wish to repa... 2021-07-24 00:02:39 | 阅读: 75 | 收藏 | research.nccgroup.com security repair firmware oems oem

Technical Advisory – ICTFAX 7-4 – Indirect Object Reference Vendor: ICTFAXVendor URL: https://www.ictfax.orgVersions affected: ICTFa... 2021-07-23 07:15:21 | 阅读: 106 | 收藏 | research.nccgroup.com ictfax ict innovations developer

Detecting and Hunting for the Malicious NetFilter Driver Category:  Detection and Threat HuntingDuring the week of June 21s... 2021-07-17 06:26:10 | 阅读: 118 | 收藏 | research.nccgroup.com malicious windows microsoft netfilter username

CVE-2021-31956 Exploiting the Windows Kernel (NTFS with WNF) – Part 1 Recently I decided to take a look at CVE-2021-31956, a local privilege escalation within Win... 2021-07-15 21:07:13 | 阅读: 94 | 收藏 | research.nccgroup.com wnf 44444444 0x000

Technical Advisory: Stored and Reflected XSS Vulnerability in Nagios Log Server (CVE-2021-35478,CVE-2021-35479) Vendor: NagiosVendor URL: https://www.nagios.com/Versions affected: >= 2... 2021-07-14 14:35:32 | 阅读: 50 | 收藏 | research.nccgroup.com nagios liew 35478

NCC Group Research at Black Hat USA 2021 and DEF CON 29 This year, NCC Group researchers will be presenting 10 presentations at Black Hat USA (2 Briefin... 2021-07-12 19:00:00 | 阅读: 103 | 收藏 | research.nccgroup.com security pmapper analysis solitude usa

Alternative Approaches for Fault Injection Countermeasures (Part 3/3) Authors: Jeremy Boone, Sultan Qasim KhanIn the previous blog post we described a set of soft... 2021-07-10 01:00:00 | 阅读: 113 | 收藏 | research.nccgroup.com software cfi duplication hardware injection

Software-Based Fault Injection Countermeasures (Part 2/3) Authors: Jeremy Boone, Sultan Qasim Khan This blog post is a continuation of part 1, which i... 2021-07-09 01:00:00 | 阅读: 84 | 收藏 | research.nccgroup.com glitch redundant volatile reg32 software

An Introduction to Fault Injection (Part 1/3) Authors: Jeremy Boone, Sultan Qasim KhanThough the techniques have existed for some time, in... 2021-07-08 01:00:00 | 阅读: 109 | 收藏 | research.nccgroup.com injection glitch glitching clock voltage

Technical Advisory – Arbitrary File Read in Dell Wyse Management Suite (CVE-2021-21586, CVE-2021-21587) Vendor: DellVendor URL: https://www.dell.com/support/home/en-us/product-s... 2021-07-07 06:54:04 | 阅读: 107 | 收藏 | research.nccgroup.com wms thin ccm wyse database

Exploiting the Sudo Baron Samedit vulnerability (CVE-2021-3156) on VMWare vCenter Server 7.0 I was going to name this blog: "libptmalloc, one tool to rule glibc" :). I am writing this blog for... 2021-07-06 20:09:28 | 阅读: 160 | 收藏 | research.nccgroup.com sudoers 0x00040 cmnd photon ph3

Technical Advisory – Shop app sends pasteboard data to Shopify’s servers Vendor: ShopifyVendor URL: https://shop.app/Versions affected: Shop Andr... 2021-07-03 07:36:00 | 阅读: 136 | 收藏 | research.nccgroup.com shopify pasteboard shop clipboard meets

Tool Release – Reliably-checked String Library Binding by Robert C. SeacordReliably-checked Strings is a library binding I created that use... 2021-07-03 01:14:17 | 阅读: 97 | 收藏 | research.nccgroup.com rcs strcpy str1 iec str2

Are you oversharing (in Salesforce)? Our new tool could sniff it out! Unauthorised access to data is a primary concern of clients who commission a Salesforce assessme... 2021-06-29 00:51:58 | 阅读: 107 | 收藏 | research.nccgroup.com salesforce raccoon owd adam centre

Exploit mitigations: keeping up with evolving and complex software/hardware TL;DRCheckout here!MotivationsIt has become challenging to fol... 2021-06-28 19:35:03 | 阅读: 111 | 收藏 | research.nccgroup.com windows software backported hardware filling

NCC Group co-signs the Electronic Frontier Foundation’s Statement on DMCA Use Against Security Researchers Today, NCC Group alongside a number of security firms and technology organ... 2021-06-24 05:33:55 | 阅读: 105 | 收藏 | research.nccgroup.com security 1201 software faith

Handy guide to a new Fivehands ransomware variant by Michael Matthews and William Backhouse tl;drNCC Group’s Incident Response team observ... 2021-06-16 01:42:08 | 阅读: 176 | 收藏 | research.nccgroup.com ransomware network remote pcloud cloud

On the Use of Pedersen Commitments for Confidential Payments The increased adoption of financial blockchains has fueled a lot of cryptography research in rec... 2021-06-15 17:00:00 | 阅读: 164 | 收藏 | research.nccgroup.com elgamal proofs encryption commitment zether