Leaking Session Tokens with CVE-2023-4966

Growth Setup 23 October 2023 0Comments

Introduction It’s time for another round Citrix Patch Diffing! Earlier this month Citrix released a security bulletin which mentioned “unauthenticated buffer-related vulnerabilities” and two CVEs. These issues affected Citrix NetScaler…

Blog News

Listing remote named pipes | Outflank

Growth Setup 19 October 2023 0Comments

On Windows, named pipes are a form of interprocess communication (IPC) that allows processes to communicate with one another, both locally and across the network. Named pipes serve as a…

Blog News

Solving The “Unhooking” Problem | Outflank

Growth Setup 5 October 2023 0Comments

For avoiding EDR userland hooks, there are many ways to cook an egg: Direct system calls (syscalls), Indirect syscalls, unhooking, hardware breakpoints, and bringing and loading your own version of…

Blog News

RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044)

Growth Setup 3 October 2023 0Comments

Executive Team Note: Our coordinated disclosure policy works on a 90 day timeline where we will disclose via our website 90 days after we report to a vendor. If a…

October 2023

Leaking Session Tokens with CVE-2023-4966

Listing remote named pipes | Outflank

Solving The “Unhooking” Problem | Outflank

RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044)

You Missed

What is the State of Ransomware in 2024

What is DMARC and How Does it Work?

Hornetsecurity elevates email security and deliverability for administrators and CISOs with DMARC Manager

Why Your Business Needs Secure Links