Vulnerability

What’s in a Name? Writing custom DNS tunnelling protocol, exploiting unexpected AWS Lambda misconfiguration – in a web app Pen test (Part 2)

<strong>Advisory CVE-2023-43042 – IBM Backup Products Superuser Information Disclosure</strong>

Advisory: IDOR in Microsoft Teams Allows for External Tenants to Introduce Malware

<strong>Advisory CVE-2023-30382 – Half-Life Local Privilege Escalation</strong>

Butting Heads with a Threat Actor on an Engagement

<strong>Advisory CVE-2022-37832 - Mutiny Network Monitoring Appliance hardcoded credentials</strong>

Advisory CVE-2021-41550 Leostream Connection Broker - Authenticated Remote Code Execution

Advisory CVE-2021-41551 Leostream Connection Broker - Authenticated Zip Slip

Securing against new offensive techniques abusing active directory certificate service