Spring4shell or SpringShell, the supposed Log4J equivalent for Spring that took the internet by storm after a couple tweets was published by a Chinese twitter account on March 29, 2022. Now, as things
With the recent events, there have been speculations [1] regarding increasing cybersecurity attacks on organizations by the threat actors. Amidst the speculations, name of a CVE which has popped up is
Recently, a CVE for Microsoft Windows HTTP protocol stack was publicly disclosed where a remote, unauthenticated attacker can cause a full compromise of the system. It affects various Windows versions
Introduction We have in the past decoded various C2 Frameworks like Empire, Koadic C3 and in this blog we are going to take a similar deep dive into understanding another popular C2 framework Posh C2.
Introduction We decoded the Command and Control Framework Empire in our previous blog post and promised to take a similar deep dive into other C2 frameworks. So, in this blog we look at the other popu
Command and Control Empire is one of the most popular Command and Control frameworks available open source in GitHub. There are a lot of basic how-to Empire articles available on the internet, so in t
Network Visibility + Security
Keysight’s Take on Spring4Shell
Ayan Saha 2022.04.25
9 min read
#Network Security #Cybersecurity
Network Visibility + Security
CVE-2020-17144 : Microsoft Exchange Server EWS Insecure Deserialization
Ayan Saha 2022.03.10
8 min read
#Network Security #Cybersecurity
Network Visibility + Security
CVE-2022-21907: Microsoft Windows HTTP protocol DOS vulnerability
Ayan Saha 2022.02.07
6 min read
#Network Security #Cybersecurity
Network Visibility + Security
Posh C2 - Command and Control
Ayan Saha 2021.08.29
9 min read
#Network Security
Network Visibility + Security
Koadic C3 : Command & Control Decoded
Ayan Saha 2021.07.28
12 min read
#Network Security #Network Visibility
Network Visibility + Security
Empire C2 : Networking into the Dark Side
Ayan Saha 2021.06.16
16 min read
#Cybersecurity #Network Security