Tips

Windows Red Team Lab Review

Intro Red Team generally is different with Penetration Test, Red Team is very offensive and should be performed as stealthy as possible. Readteaming is not determined by scope, but based on goals, such as compromise high-level e-mail or device, compromise Domain Controllers of an organization, and more. To be able to do that, the attacks […]

Read More
Exploit Development

Zahir Accounting Enterprise Plus 6 <= build 10b 0day Exploit Vulnerability Discovery

Zahir Accounting adalah software akuntansi yang sangat banyak digunakan oleh tingkatan SOHO (Small Office Home Office) di Indonesia. Selain harganya yang terjangkau, Zahir memiliki fitur yang lebih dari cukup untuk menyelesaikan pencatatan akuntansi yang tanggung, dalam arti mampu menyisir tingkat menengah ke bawah dan juga mampu menghadapi tantangan akuntansi yang hampir mendekati tingkat¬†enterprise.¬† Pada kesempatan […]

Read More
Security Advisory

FileRun: Blind SQL Injection Vulnerability

Some time ago while doing a pentest, we found a vulnerability in a file sharing web application named FileRun. This application allows us to access our files anywhere through self-hosted secure cloud storage, backup and sharing files for our photos, videos, files and more.

Read More
Exploit Development
Security Advisory

CyberLink LabelPrint: Buffer Overflow

It’s been a while since the last post about exploitation on this blog. This time, we try to explain a stack based overflow on a software called Cyberlink LabelPrint. The software serves as a tool to assist in designing labels for CD / DVD covers. Cyberlink LabelPrint is included in the installation of Cyberlink Power2Go, PowerDVD, and Power Producer software and also pre-installed in the latest laptop by Lenovo, HP, and Asus.

Read More
Exploit Development
Security Advisory

ALLPlayer: Buffer Overflow (SEH Unicode)

After playing around with unicode stack overflow, I try to do it on an application called AllPlayer. Techniques used are not much different, so the result will be the same as the previous exploits. This application never seems to be updated by the developer, ironically this application is widely used.

Read More
Security Advisory

NetGain Enterprise Manager: Authentication Bypass / Local File Inclusion

We found a vulnerability on NetGain Enterprise Manager during a pentest. We think that the vulnerability is quite rare and worth to share.

Read More
Tutorial

SMB Exploit (MS17-010) dengan EternalBlue dan DoublePulsar

EternalBlue dapat digunakan untuk melakukan eksploitasi pada layanan Server Message Block (SMB) tanpa membutuhkan proses otentikasi. Kemudian ditambah dengan menggunakan DoublePulsar untuk mengirim sekaligus mengeksekusi malicious Dynamic-Link Libraries (DLL) atau raw shellcode pada komputer korban.

Read More
Walkthrough

Hackfest 2016 Orcus Walkthrough

So this is a write up for Hackfest 2016 Orcus found in Vulnhub, just to fill my leisure time!

Read More
Security Advisory

NetGain Enterprise Manager: ‘Ping’ Command Injection

This vulnerability found during a pentest. The vulnerability is quite rare and worth to share.

Read More