Resources
Article

Reversing and Exploiting with Free Tools: Part 11

In part 10, we started exploring different protections and mitigations that we may find. In this part, we’ll continue this exercise, completing the ROP bypass of the DEP. Roping Step by Step Typically, there are tools that, in simple cases can automatically build a ROP. However, in difficult cases, these tools generally can’t fully build one, or can only partially do so, leaving one to complete by...
Article

SAPCAR Heap Buffer Overflow: From crash to exploit

1. Introduction In this blog post, we will cover the analysis and exploitation of a simple heap buffer overflow found in SAPCAR a few weeks ago. SAP published security note #2441560 classifying the issue as "Potential Denial of Service". This post is our attempt to show
Article

Solving a post exploitation issue with CVE-2017-7308

As part of my daily work as an Exploit Writer, I decided to take a look at CVE-2017-7308. It is a Linux Kernel vulnerability related to packet sockets. I will not go into details about the bug itself or its exploitation because there is an…
cs-inside-mind-of-an-attacker-post-breach-final-advice-
Blog

Getting Inside the Mind of an Attacker: After the Breach – Final Words of Advice

By Julio Sanchez on Mon, 10/04/2021
Having your Active Directory breached is bad enough, but an attacker who gains persistence is even more dangerous. The longer they are able to hide in your Active Directory forest, the better chance they have of gaining access to your organization’s crown jewels. Undetected, they can comfortably wait for the most opportune time to take control, stealing your organization’s most sensitive data and...
Penetration Testing
Red Team
Top 12 Vulnerability Scanners for Cybersecurity Professionals
Blog

Top 14 Vulnerability Scanners for Cybersecurity Professionals

By Pablo Zurro on Mon, 09/27/2021
Vulnerability scanners are valuable tools that search for and report on what known vulnerabilities are present in an organization’s IT infrastructure. Using a vulnerability scanner is a simple, but critical security practice that every organization can benefit from. These scans can give an organization an idea of what security threats they may be facing by giving insights into potential security...
Penetration Testing
Three Tools for Maturing Your Vulnerability Management Program
Blog

Three Tools for Maturing Your Vulnerability Management Program

Mon, 09/27/2021
Cybersecurity has become an increasingly popular topic in day-to-day conversation, and the conclusion is always the same: organizations need to make cybersecurity a priority and work to create the best security strategy possible. However, there’s a big difference between understanding what you need versus knowing how to get it. Many organizations are still in the early stages of developing and...
Penetration Testing
SIEM
Threat Detection
Compliance
Digital man at computer
Blog

What is Intelligent Identity and Access Management?

Fri, 09/17/2021
What is Intelligent IAM?Intelligent IAM (IIAM) encompasses all the administrative processes used in Identity and Access Management (IAM), but the processes are influenced by real‐time data. IAM solutions that use intelligence continuously collect, monitor, and analyze large volumes of identity and access‐related information, combining data not only from provisioning and governance solutions but...
IAM
Datasheet

Infrastructure Protection for Proactive Security

To counter the ongoing persistence of cyber threats, organizations must adopt proactive security strategies that anticipate potential attacks rather than solely relying on reactive defenses. Our Infrastructure Protection suite provides security teams with the data needed to identify weaknesses and then verify them through practical exploitation. This dual approach maps potential attack paths...
Penetration Testing
SIEM
Threat Detection
least-privilege-access-management
Blog

What Does Least Privilege Access Actually Mean?

Thu, 09/09/2021
If you’re like most IT or security professionals, it seems harder than ever to manage the complexity of user access. Keeping track of access rights, roles, accounts, permissions, entitlements, credentials, and privileges is a never ending—and sometimes thankless—proposition. And it’s riskier than ever before. In fact, according to the 2021 Cost of a Data Breach Report, compromised credentials are...
PAM
IGA
IAM
Article

Reversing and Exploiting with Free Tools: Part 10

In the previous parts of this series, we went through some basic examples of exploitation and reversing. Now we’ll take a step forward, gradually adding different protections and mitigations that we will find. What are mitigations? Over the years, new generic defense methods have been added to new systems. While they don’t prevent exploitation, these mitigation techniques aim to make exploitation...
Core Impact Adds Integrations for Frontline VM and beSECURE
Blog

Core Impact Adds Integrations for Fortra VM and beSECURE

Wed, 09/08/2021
Core Security’s comprehensive penetration testing tool, Core Impact, can now import data from two additional vulnerability scanners: Fortra VM (formerly Frontline VM) and beSECURE. Both vulnerability assessment and management solutions were recently acquired by Fortra to establish a comprehensive security assessment toolkit. By adding integration with these solutions, Core Impact can further...
Penetration Testing
Miscellaneous persistence techniques
Blog

Getting Inside the Mind of an Attacker: After the Breach – Miscellaneous Techniques for Achieving Persistence

By Julio Sanchez on Tue, 08/31/2021
In the first two parts of this series, we covered how attackers may attempt to gain persistence in Active Directory by forging Kerberos tickets or through domain replication abuse, and also discussed strategies to detect these methods. In this part, we’ll touch on a few more techniques: AdminSDHolder and SDProp abuse, SID History attacks, and skeleton key attacks. AdminSDHolder Container and...
Penetration Testing
Data Security
Video

Core Impact Overview

Wed, 08/25/2021
Core Impact is an automated penetration testing tool that enables organizations to conduct comprehensive security assessments across multiple vectors, including network, client side, and web applications. Take three minutes to watch this video to see how Core Impact empowers you to safely test your environment using the same techniques as today's adversaries. ...
Penetration Testing
3 Reasons You Should Be Using SIEM
Video

Three Ways to Extend your Vulnerability Management Program

Fri, 08/20/2021
With the threat of cyber-attacks perpetually looming over organizations, security can’t be guaranteed with a single solution or a “set it and forget it” mentality. Security strategies have to continuously evolve and assess risk in order to keep up with today’s threats. This webinar, ideal for security professionals of all levels, will explore the elements of a successful vulnerability management...
Datasheet

Cobalt Strike

Cobalt Strike is a standard-setting adversary simulation tool, recognized globally for facilitating red team operations with its signature payload and extensible C2 framework to accurately replicate the tactics of today’s advanced threat actors Beacon: The Customizable Post-Exploitation Payload Beacon, Cobalt Strike’s signature payload, models the behavior of advanced adversaries to perform post...
Red Team
Getting Inside the Mind of an Attacker: After the Breach - Achieving Persistence with Domain Replication Abuse
Blog

Getting Inside the Mind of an Attacker: After the Breach - Achieving Persistence with Domain Replication Abuse

By Julio Sanchez on Mon, 08/16/2021
In part one of this series, we discussed how attackers may attempt to gain persistence in Active Directory by forging Kerberos tickets, as well as ways to detect these efforts. In this part, we’ll discuss another method attackers may use: domain replication abuse. The DCSync Attack Domain replication, or DCSync, is a feature that was first intended to be used by Domain Controllers. Requesting a...
Penetration Testing
What Types of Attacks Does SIEM Detect?
Blog

What Types of Attacks Does SIEM Detect?

Mon, 08/16/2021
Security Information and Event Management (SIEM) solutions are known for their ability to provide visibility into IT environments by monitoring data sources for unusual activity and contextualizing them for security insights. According to the 2021 SIEM Report by Cybersecurity Insiders, 76% of cybersecurity professionals surveyed reported that SIEM improved their ability to detect threats. But what...
SIEM
Identity & Access Management
Blog

Protecting Your Organization from Identity Theft

Tue, 08/10/2021
Did you know that, on average, 15 million residents in the U.S. are affected by identity theft and upwards of $50 billion are stolen each year? During the holiday season we hear a lot about keeping your identity safe when shopping online or in retail stores across the country, or even across the world. Why? The most obvious reasons are that your money can be stolen and in turn, your credit ruined...
identity-access-management-remote-workforce
Blog

How to Strengthen Identity and Access Management with the Rise of a Hybrid Workforce

Mon, 08/02/2021
As organizations have made the transformational shift to a remote and hybrid workforce, IT and security teams are feeling increased pressure to better manage access to sensitive data and systems. The rise of a remote and expanded workforce has put additional strain on organizations and increased the potential for identity-related access risks. To combat these access risks, identity and access...
IGA
IAM