Jumpsec 21

• How to Handle Development Projects in a Pentest Company Aug 6, 2024
• How Cloud Migration is Affecting AppSec – A Red Teamer’s Perspective Jul 4, 2024
• Advisory CVE-2023-43042 – IBM Backup Products Superuser Information Disclosure Dec 21, 2023
• Red Teaming the Cloud: A Shift in Perspective Dec 19, 2023
• Ligolo: Quality of Life on Red Team Engagements Jun 9, 2023
• Hunting for ‘Snake’ May 26, 2023
• Advisory CVE-2023-30382 – Half-Life Local Privilege Escalation May 23, 2023
• Advisory CVE-2022-37832 – Mutiny Network Monitoring Appliance hardcoded credentials Dec 15, 2022
• Can Depix deobfuscate your data? Aug 3, 2021
• Detecting known DLL hijacking and named pipe token impersonation attacks with Sysmon Nov 13, 2020
• Advisory CVE-2020-13773 – Ivanti Unified Endpoint Manager Reflected XSS Nov 13, 2020
• Advisory CVE-2020-13769 – Ivanti Unified Endpoint Manager SQL injection Nov 13, 2020
• Advisory CVE-2020-13772 – Ivanti Unified Endpoint Manager system information disclosure Nov 13, 2020
• Advisory CVE-2020-13774 – Ivanti Unified Endpoint Manager authenticated RCE via file upload Nov 12, 2020
• Advisory CVE-2020-13770 – Ivanti Unified Endpoint Manager named pipe token impersonation privilege escalation Nov 11, 2020
• Advisory CVE-2020-13771 – Ivanti Unified Endpoint Manager DLL search order hijacking privilege escalation Nov 11, 2020
• Thunder Eye – Threat Intelligence Aggregator Jun 7, 2020
• API Hooking Framework Jun 7, 2020
• A Defender’s Guide For Rootkit Detection: Episode 1 – Kernel Drivers Apr 20, 2020
• Bypassing Antivirus with Golang – Gopher it! Jun 20, 2019
• Enhanced logging to detect common attacks on Active Directory– Part 1 Feb 6, 2019