New InfoSec Team spawned: BreachedSec
I decided to set up a new team of infosec professionals, because of a lot of project requests […]
Blog
CVE-2018-16231: Remote DoS in Personal FTP-Server <= 8.4f
CVE CVE-2018-16231 Vulnerable Software FTP-Server <= 8.4f Vulnerability Remote Denial of Service Time Line 30.01.2018 Vendor informed (local […]
Backdooring PE-File (with ASLR)
Welcome to my next blog post. Today i want to show you some basic pentesting stuff. We will […]
HanseSecure bei der IT-Secuta 2018
Vom 21.11. bis 23.11.2018 findet in Garmisch-Partenkirchen die SECUTA Information Security Tagung statt. Dort werden die aktuellen Entwicklungen […]
HowTo: MSF-Email
This is just another very short usage guide for one of my little helper for pentesters and the […]
HowTo: ExploitDev Fuzzing
This is a short usage guide which should explain my simple wrapper for the spike fuzzer, which you […]
CVE-2018-7272: AM 5.0.0, 5.1.0
CVE CVE-2018-7272 Vulnerable Software AMÂ 5.0.0, 5.1.0 Vulnerability Unauthorized Access Time Line 15.12.2017 Vendor informed X.01.2018Â Vendor patched flaw […]
Vulnerability: Local Bufferoverflow in Personal FTP-Server 8.0f(g)
Vulnerable Software FTP-Server 8.0f(g) Vulnerability Local Buffer Overflow (SEH protected)-> Code Execution Time Line 24.01.2018 Vendor informed […]
Offensive Security Certified Expert && me
As promised on Twitter here is my OSCE review. You can read my time line from before course […]
CVE-2009-1437: RCE in CoolPlayer+ <= 2.19.6 (Windows 10 Pro)
While doing my preperation for the OSCE i found an exploit for the coolpalyer+ version 2.19.1 from 2009. I […]