Dynamic instrumentation with Frida to analyse Mobile Applications
When a security assessment on a mobile application is being carried out (specifically on Android) there are two main roads an analyst can take: ...
Blog
Understanding ATT&CK for Industrial Control Systems (Part II)
Tactics and Techniques Used in Known ICS Attacks
The evidence that ICS systems are a prime target for sophisticated attackers, is clearly shown by...
Unauthenticated RCE in Draytek Vigor 2960, 3900 and 300 (CVE-2020-8515)
CVE: CVE-2020-8515
DrayTek Vigor enterprise switches, load-balancers, routers and VPN gateway devices are affected by a remote code execution...
Understanding ATT&CK for Industrial Control Systems (Part I)
MITRE introduced the Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) in 2013 as a central knowledge base for adversary behaviour. It is...
Kernel Capabilities in Docker: A fine-grained Access Control System
Kernel capabilities turn the binary “root/non-root” dichotomy into a fine-grained access control system. As was seen in the user namespace remapping...
User namespace remapping: an advanced feature to protect your Docker environments!
Por Sheila A. Berta
Unlike many technologies, Docker is designed with security in mind. There are several functionalities within the Docker's ecosystem that support...
Dump the Raft logs in Docker Swarm to get secrets and more!
Por Sheila A. Berta
When docker installations are running in Swarm mode, manager nodes implement the Raft Consensus Algorithm to manage the cluster global state. Docker...
Bypassing Air Gaps in ICS Systems
Por Yamila Levalle
An air gap, air wall or air gapping is a network security measure applied to on one or more computers to ensure that they are physically isolated...
Starbucks IDOR: How we prevented an information leak of 6 million Starbucks customers
Por Yamila Levalle
I know where you had coffee last summer! In this blogpost we will explain an IDOR vulnerability that we found at Starbucks Singapore's website a few...
Fuzzing ICS Protocols
Por Yamila Levalle
Traditionally, industrial control systems have been isolated networks with controlled states and very consistent traffic. Developers simply needed to...
