by moth Hard-coded cryptographic secrets? In my commercially purchased, closed-source software? Itβs more likely than you think. Like, a lot more likely.Β This blog post details a true story of [β¦]
The post Indecent Exposure: Your Secrets are ShowingΒ appeared first on Black Hills Information Security, Inc..
moth // IntroductionΒ One fateful night in June of 2022, Ethan sent a message to the crew: βAnyone know ways to foolΒ AuditdΒ on Linux?Β IβmΒ trying to figure out how to change theΒ auidΒ (audit [β¦]
The post Auditd Field Spoofing: Now You Auditd Me, Now You Auditdonβt appeared first on Black Hills Information Security, Inc..
moth // Recently, BHIS penetration tester Dale Hobbs was on an Internal Network Penetration Test and came across an RPC-based arbitrary command execution vulnerability in his vulnerability scan results.Β I [β¦]
The post Exploit Development β A Sincere Form of Flattery appeared first on Black Hills Information Security, Inc..
moth & James Marrs // Introduction After a month of hard work, Python headaches, dependency hell, and a bit of tool necromancy, ADHD4 is here and weβre thrilled to share [β¦]
The post Now Thatβs What I Call ADHD! 4 appeared first on Black Hills Information Security, Inc..
Login