[email protected]      0333 939 8080

Jumpsec Labs
Jumpsec Labs

JUMPSEC LABS

The JUMPSEC Lab is a place where the the technical team get creative and showcase their latest security research, publications, interesting news and general thoughts!  We love what we do and are passionate about security, with some great upcoming projects planned, bookmark our site and stick around to see what we are working on.

Advisory CVE-2021-41550 Leostream Connection Broker – Authenticated Remote Code Execution

by lrckt | Jan 26, 2022 | , ,

Software: Leostream Connection BrokerAffected Versions: 9.0.40.17Vendor page: https://leostream.com/CVE Reference: CVE-2021-41550Published: 25/01/2022Attack Vector: Remote, authenticatedCredits: Andrei Constantin Scutariu, Lenk Ratchakrit Seriamnuai, Andrea Malusardi Summary As the Leostream Connection Broker version: 9.0.40.17 allowed an attacker to upload any content through Third Party Content functionality, it was found that the application allowed the listed filenames below the ability to execute Perl programming language by default on the web application. Mitigation The Leostream has released a patch for this vulnerability, JUMPSEC recommend upgrading the affected versions as soon as possible. Leostream's release notes and advisories can be found here. Technical details For achieving remote code execution, an attacker with administrator access to the application - or access as a...

read more
PowerShell Jobs

PowerShell Jobs

JUMPSEC investigators recently observed an adversary weaponising PowerShell Jobs to schedule their attack whilst responding to an incident. We discuss what PowerShell Jobs are, how they can be leveraged for malicious purposes, and how defenders can protect, detect, and respond to neutralise the threat.

read more

Overcoming Issues Using Custom Python Scripts with Burp Suite Professional

by p.osborn | Apr 28, 2021 |

Summary / TL:DR I recently encountered some issues when using Burp Suite Professional which led me to playing around with the Python Scripter extension. The extension allows running custom Python scripts on every request/response processed by Burp, including those generated by functionality such as Burp's active scanner. This has a number of potential use cases, but I found it particularly...

read more

Win a place @HackFu 2021 Community Edition!

by jstester007 | Dec 21, 2020 |

Hello world!At JUMPSEC we’ve managed to get our hands on tickets to what is probably the greatest cyber security event in the calendar, HackFu!In order to be in with a chance of winning you simply need to complete the following challenge which you can download here (the download contains all the information needed to complete the challenge):...

read more

Detecting known DLL hijacking and named pipe token impersonation attacks with Sysmon

by xnand | Nov 13, 2020 | , ,

Recently we posted a bunch of advisories relating to Ivanti Unified Endpoint Manager, a couple of which are for vulnerabilities which can be used to achieve local privilege escalation. We will give a brief explanation of the vulnerabilities and an example of Sysmon configuration rules to log exploitation attempts, along with the rationale behind them so you can adapt them to your existing configuration if needed.

read more

Advisory CVE-2020-13773 – Ivanti Unified Endpoint Manager Reflected XSS

by xnand | Nov 13, 2020 | ,

Software: Ivanti Endpoint ManagerAffected Versions: <= 2020.1.1Vendor page: www.ivanti.comCVE Reference: CVE-2020-13773Published: 13/11/2020CVSS 3.1 Score: 5.5 - AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:LAttack Vector: Remote, authenticatedCredits: Andrei Constantin Scutariu, Lenk Ratchakrit, Calvin Yau Summary Various web pages on Ivanti Unified Endpoint Manager web management console lack proper...

read more

Advisory CVE-2020-13774 – Ivanti Unified Endpoint Manager authenticated RCE via file upload

by xnand | Nov 12, 2020 | ,

Improper validation on file upload functionality present in Ivanti Unified Endpoint Manager’s web management console permits an authenticated user to upload .aspx files and execute them on the MS IIS server’s context. The issue is caused by insufficient file extension validation and insecure file operations on the uploaded image, which upon failure will leave the temporarily created files in an accessible location on the server.

read more

GitHub Activity

 

Twitter

Jumpsec Labs · 5 months ago
@JumpsecLabs
We're hiring! Get in touch for a chat!
https://t.co/GzV3I06k4F
#cybersecurity #hiring #softwareengineer #consultants
View on Twitter
4
4
Jumpsec Labs · 7 months ago
@JumpsecLabs
How can you investigate an incident if the logs have been deleted by an attacker?! 🙉😟

In our latest article, Dray ( @Purp1eW0lf) offers some digital forensics techniques you can use when the Windows event logs have been wiped! 🕵️‍♂️🕵️‍♀️

https://t.co/g4z12irzQB
View on Twitter
6
26
Jumpsec Labs · 7 months ago
@JumpsecLabs
Big thanks to the tech team for creating an awesome #CTF A great few days of saving the world and being back together.Check it out ...
#cyberevent #cybernews #cyber @JUMPSEC https://t.co/RMgsOtUTo3
View on Twitter
JUMPSEC@JUMPSEC
Awesome three days of team building and challenges for the JUMPSEC team!

It was great to finally get together, face to face, and enjoy some time away with the company as a whole.

Check it out below!

#CyberSecurity #teambuilding #event https://t.co/xUsY7NHPeW
0
6
Jumpsec Labs · 8 months ago
@JumpsecLabs
What's your controversial cyber security opinion? #infosec #cybersecurity
View on Twitter
2
4
Jumpsec Labs · 8 months ago
@JumpsecLabs
Only 2 days left to participate!
Don't miss your chance to win a ticket to
@BSidesLondon ...... https://t.co/RlZ2AqvBi6
View on Twitter
JUMPSEC@JUMPSEC
COMPETITION TIME!! 🥳

We're giving away TWO TICKETS for the @BSidesLondon event on the 13th of November!

Reply to this tweet before next Wednesday 3rd of November to enter the price draw and become the lucky winner!

#cybersecurity #cybernews https://t.co/nnzoVE4FqG
7
8
Jumpsec Labs · 8 months ago
@JumpsecLabs
Only 2 days left to participate!
Don't miss your chance to win a ticket to @BSidesLondon!!🤞 https://t.co/RlZ2AqvBi6
View on Twitter
JUMPSEC@JUMPSEC
COMPETITION TIME!! 🥳

We're giving away TWO TICKETS for the @BSidesLondon event on the 13th of November!

Reply to this tweet before next Wednesday 3rd of November to enter the price draw and become the lucky winner!

#cybersecurity #cybernews https://t.co/nnzoVE4FqG
1
2

Latest from JUMPSEC

Disclaimer

The information provided on this website is to be used for educational purposes only. The author is in no way responsible for any misuse of the information provided. Any actions and or activities related to the material contained within this website is solely your responsibility.

Jumpsec, Unit 3E – 3F, 33 – 34 Westpoint,
Warple Way, Acton
W3 0RG

To learn more about JUMPSEC's services please get in touch:

Give us a call: 0333 939 8080

Send us a message: [email protected]

To learn more about JUMPSEC'S services please get in touch:

Give us a call: 0333 939 8080

Send us a message: [email protected]

Jumpsec, Unit 3E – 3F, 33 – 34 Westpoint,
Warple Way, Acton, W3 0RG

© JUMPSEC 2020 | Privacy Policy
JUMPSEC Ltd. is a company registered in England and Wales. Registered Address: 1 Golden Court, Richmond, Surrey, TW9 1EU. Registration Number: 08327063