Securiteam – PossibleThreat Articles

beVX Conference Challenge – HiTB

August 27, 2019 0 Comments Conferences

Credit to Author: SSD / Noam Rathaus| Date: Fri, 22 Jun 2018 11:30:44 +0000

During the event of Hack In the Box, we launched an ARM reverse engineering and exploitation challenge and gave the attendees the change to win great prizes. The challenge was divided into two parts, a file – can be downloaded from here: https://www.beyondsecurity.com/bevxcon/bevx-challenge-10 – that you had to download and reverse engineer and server that … Continue reading beVX Conference Challenge – HiTB

Independent Securiteam

I run this SOC!

August 27, 2019 0 Comments Insider Threat, Sec Tools, Tips & Tricks

Credit to Author: dmitryc| Date: Tue, 05 Sep 2017 19:35:20 +0000

I don’t actually run this SOC (or any other) 🙂 But…but, as a certified “blue team” member, I’m pretty excited with the crop of new companies and ideas that are springing up in the area of SOC analysis, Deception technology, Lateral/external movement, etc. Some of the cool new(ish) vendors that I am falling deeply in … Continue reading I run this SOC!

Independent Securiteam

Hack2Win – Code Blue 3rd Edition

August 27, 2019 0 Comments Conferences, Hack2Win

Credit to Author: SSD / Research Team| Date: Mon, 21 Aug 2017 06:26:26 +0000

Hi everyone, We are excited to announce our 3rd Hack2Win Code Blue competition! This year we have changed the format, raised the difficulty level and increased the prizes. The goal of the event is to find who can gain the highest privileges on any of the target software and hardware. Prizes for this contest will … Continue reading Hack2Win – Code Blue 3rd Edition

Independent Securiteam

Know your community – Celil ÜNÜVER

August 27, 2019 0 Comments Know your community

Credit to Author: SSD / Research Team| Date: Mon, 24 Jul 2017 09:57:46 +0000

Bug Bounty hunter – found and reported vulnerabilities in Microsoft, Apple, Adobe, IBM, Novell and more, Co-Founder of TRAPMINE and SignalSEC, Founder of NOPCon, speaker at PoC / Code Blue / Swiss Cyber Storm / CONFidence and more – please meet Celil ÜNÜVER Questions Q: How many years have you been working in the security … Continue reading Know your community – Celil ÜNÜVER

Independent Securiteam

SSD Advisory – HTC Sync Remote Code Execution

August 27, 2019 0 Comments Commentary, remote code execution, Unauthenticated Action

Credit to Author: SSD / Research Team| Date: Mon, 27 Feb 2017 10:19:14 +0000

Vulnerabilities Summary The following advisory describes a remote code execution (RCE) found in HTC Sync version v3.3.63. Credit An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program. Vendor response The vulnerability was not reported to the vendor because the product has reached end of life on 31 August 2016 … Continue reading SSD Advisory – HTC Sync Remote Code Execution

Independent Securiteam

HITCON Taiwan 2016

August 27, 2019 0 Comments Commentary

Credit to Author: SSD / Research Team| Date: Wed, 07 Dec 2016 12:14:33 +0000

On the 1-2 December 2016 we had the honor for the first time to sponsor HITCON and visit Taiwan. Our adventure started in November 30th when Noam and I landed in Taipei and we had half a day to sightseeing and set up our booth at the conference hall. In the evening we were invited … Continue reading HITCON Taiwan 2016

Independent Securiteam

SSD Advisory – Teco SG2 and TP3 Vulnerabililites

August 27, 2019 0 Comments Commentary, Unauthenticated Action

Credit to Author: SSD / Noam Rathaus| Date: Mon, 04 Jul 2016 12:58:21 +0000

Vulnerabilities Description Multiple vulnerabilities have been found in Teco’s SG2 and TP3 product, these vulnerabilities allows attackers that are able to supply the products with a specially crafted file to cause it to execute arbitrary code. TECO TP3 PC-LINK tpc file parsing Stack Buffer Overflow Code Execution TECO uses their own propriety file format known … Continue reading SSD Advisory – Teco SG2 and TP3 Vulnerabililites

Independent Securiteam

Using Machine Learning To Detect Anomalies

August 27, 2019 0 Comments Commentary

Credit to Author: dmitryc| Date: Mon, 21 Dec 2015 22:07:07 +0000

I’m going to start blogging more about detection of protocol/app anomalies, detection of lateral movement and/or data exfiltration, and more. For many years I have been watching users and applications furrow their way across networks and I’m gonna start data-dumping that info here 🙂 But…first…I manage a web server for a friend. It occurred to … Continue reading Using Machine Learning To Detect Anomalies

Independent Securiteam

Oracle CSO is right

August 27, 2019 0 Comments Commentary

Credit to Author: dmitryc| Date: Tue, 11 Aug 2015 16:34:29 +0000

The internet (or at least twitter) is exploding regarding this, now deleted, post : Mary Ann Davidson blog post Let me start by saying that she is right. Yes, she’s right. Breaking the EULA is against the law. You can’t argue about that. You can’t argue that they should be paying a bug bounty. You … Continue reading Oracle CSO is right

Independent Securiteam

Play some D!

August 27, 2019 0 Comments Commentary

Credit to Author: dmitryc| Date: Tue, 04 Aug 2015 14:33:59 +0000

Hi there. Long-time-no-blog 🙂 If you haven’t already, go read this: https://t.co/d2hwhmzzuz Note: this blog applies to Corporate networks. If you’re a coffee shop or a college, you’re on your own 🙂 I’ve been a network defender for many years. I currently work for a software company that builds network software which helps companies gain … Continue reading Play some D!

← Previous