The Threats That Are Your Weakest Link
June 25, 2018, Mike Weber, Vice President, Coalfire Labs
Coalfire published the latest report in its Securealities series, The Penetration Risk Report, and it’s based on findings from Coalfire penetration tests. It includes data drawn from engagements with businesses of all sizes, spanning financial services, retail, healthcare, and technology/cloud service providers. Some findings were contrary to current accepted wisdom on cybersecurity while other findings confirmed long held notions for others.
How I Found CVE-2018-8819: Out-of-Band (OOB) XXE in WebCTRL
June 11, 2018, Darrell Damstedt, Senior Consultant, Coalfire Labs, Coalfire
I like to do bug bounties from time to time, mostly when I am sacrificing sleep once the kids are finally out cold. This seemed like a worthy experience to document. Let me just start by saying I don't plan on going into the whole recon bits too deeply here. Maybe I will someday if I ever have enough time to give the topic the justice it deserves.
Pro Tips: Testing Applications Using Burp, and More
June 08, 2018, Esteban Rodriguez, Consultant, Coalfire Labs, Coalfire
Burp Suite is one of my favorite tools for web application testing. The feature set is rich, and anything that it does not do by default can usually be added with an extension. There are a few things, however, that while they exist in Burp Suite, are not completely intuitive. Below are a few pro tips to help you get the most out of your web application tests.
PowerShell: In-Memory Injection Using CertUtil.exe
May 31, 2018, Shane Rudy, Senior Security Consultant, Coalfire Labs
Have you ever heard the old saying,” The only constant in life is change?” Nothing is truer in the world of penetration testing and information security than the certainty of change. New defenses are always emerging, and the guys and gals in the red team game are always having to evolve our efforts to evade defenses. This week was one of those weeks for me.
Exploiting an Unsecured Dell Foglight Server
May 23, 2018, Esteban Rodriguez, Consultant, Coalfire Labs, Coalfire
Dell Foglight for Virtualization is an infrastructure performance monitoring tool that can also be used to manage systems as well. It comes configured with a default username and password of “foglight.”