Bold Statements
This is the 3rd post in the series of Autonomic Network (AN), it will dedicated for discussing the vulnerabilities. I recommend reading the first 2 parts (part one, part two) to be familiar with the technology and how the proprietary protocol is constructed.
Initially we will discuss 2 of the reported CVEs, but later there is more CVEs to come š
Continue reading “Autonomic Network Part 3: Vulnerabilities”
Continue readingPuhā¦itās been a long time since my last post, huh?
However, letās get straight back to topic. Today, I want to issue a warning, especially in face of upcoming Troopers 2017 (less than two days to go, wooo! 10th anniversary!): be carefulĀ when using wireless equipment (presenters, mouses, keyboards,ā¦), especially during Troopers, but also in daily use. Continue reading “This is Why Your Wireless Mouse Should Have a Tail and Your Presenter is a Fail”
This is the second part in the Autonomic Network series. We have introduced previously in our first part the Autonomic Network (AN), took a look about the needed configuration to run it on Cisco gear and what is the expected communication flow. In this post, we will dive deeper to have a closer look on the packets and how they are composed. Continue reading “Autonomic Networking ā Part 2: Analysis”
Continue readingThis is a 3-part series which introduces and analyzes Ciscoās implementation for Autonomic Network. In the 1st part, the technology is introduced and we have an overview about communication flow. In the 2nd part, Ciscoās proprietary protocol is reverse engineered š then finally in the 3rd part, multiple vulnerabilities will be disclosed for the first time. If youāre aware of the technology, you can skip directly to part 2 where the action begins!Ā Continue reading “Autonomic Networking – Part 1: Overview”
Continue readingLast year I encountered a slight variation of an internal port scan vulnerability for the CrystalReports component of SAP Business Objects. The original vulnerability was presented and disclosed by rapid7 in the talk āHacking SAP Business Objectsā. The corresponding slides can be found here. Continue reading “Information About SAP Security Note 2336795”
Continue readingTavis did it again[1]. As stated in the title it is possible to remotely execute commands via the Chrome extension for the popular meeting software Cisco WebEx. This post summarizes the most relevant information for you.
Continue reading “Cisco: Magic WebEx URL Allows Arbitrary Remote Command Execution – Project Zero”
Continue readingHi all,
iĀ“ve looked a bit atĀ the Insomni’hack CTF which took place onĀ the 21st January and lastedĀ for 36 hours.
For the sake of warming up a bit for our Troopers workshop Windows and Linux Exploitation,
I decided to create a write-up ofĀ the first pwn50 challenge.
To grab your own copy of the presented files you can also find it in our Github repository:
Continue reading “Insomni’hack pwn50 write-up”
Continue readingWhile doing heap research on Linux processes (results are going to be published soon), I came across the bot from the Mirai Botnet. As already mentioned in the blog post by Brian, the Mirai bot uses obfuscated configuration data which contains e.g. the CnC server. When now confronted only with a bot (e.g. in the context of a running task or the ELF binary), but without the according source code, the decryption of this configuration data for e.g. incident analysis purposes might not be easily possible (with the python script from the blog post), if the key has been changed.
But in this case that is not a problem at all, because Continue reading “A short Addendum on the Mirai Botnet Blog Post”
As you have probably already recognized, some of us here at ERNW are doing research in the area of smart home technologies e.g. KNX. Recently, we took a deeper look into a device which is used to control a smart home system produced by the vendor BAB TECHNOLOGIE GmbH called āeibPortā. This device can be used to control smart home systems based on different technologies e.g. EnoCean or KNX depending on the version of the device. Continue reading “Analyzing yet another Smart Home device”
Continue readingAs a part of our research time here at ERNW, last week we had an interesting time looking at one of the widespread and commonly adopted proxy appliance by many organizations Blue Coat Secure Gateway.
Continue reading “Research Diary: Blue Coat”
Continue reading