I really wanted to see what was going on under the hood, so to speak, when a new device ( IOT) is turned on and it is magically detected by the mobile (IOS/Android) app for the initial configuration. Just for fun, I started sniffing the Bluetooth communication during the initial connection and it was quite …
Almost all the organizations use emails to transfer their confidential files. When we talk about email based file transfer, there are risks involved. In security we usually mention the phrase, “points of compromise”. These points of compromise are where an attack can occur and if successful, can cause serious damage. The following graphic illustrates different …
For a while now we noticed that there have been many attacks on our website. We think that it is time to post the IP addresses in the form of an IP Black list. This might help other organizations, ban the IP addresses, before the cyber criminals can attack. The following list comprises of the …
In the past few years I have done several web application firewall assessments and have been very successful in bypassing them. So, thought to share some of the things that I learnt. Let me just clarify what this post is NOT about: This post is not about, how to detect web application firewall (WAFs) on …
Hi Folks, There is a vulnerability in the ZTE home-router, installed in many homes (in millions) throughout the country, provided by Pakistan Telecommunication Company Limited (PTCL), which enables an attacker to bypass admin portal authentication and display and/or change the WIFI password. Furthermore, the attacker can reset the router to its factory settings and/or restart …
Disclaimer: [This POC is for Educational Purposes , I would Not be responsible for any misuse of the information mentioned in this blog post] Hi folks, Several vulnerabilities were identified in the Huawei LTE router. These are described in detail below: Product Family: LTE Model B315s – 22 Firmware version: 21.318.01.00.26 Author: Usman Saeed (usman [at] xc0re.net) …
Huawei LTE router unauthenticated resource access Read More »
Disclaimer: [This POC is for Educational Purposes , I would Not be responsible for any misuse of the information mentioned in this blog post] Hello folks. An Input validation vulnerability was found in TP-Link Archer c1200 v1.0, which results in client side code execution. [CVE-2018-13134] [+] Unauthenticated [+] Author: Usman Saeed (usman [at] xc0re.net) [+] Affected Version: …
TP-Link wireless router Archer C1200 – Cross-Site Scripting Read More »
While researching on data exfiltration techniques and covert channels, I thought of making one of my own, dubbed ChorTCP. Though protocol over protocol tunneling is a well known concept but I really wanted to actually try to hypothesize one aspect and then implement it, just for fun. The abstract below is taken from the white …
This is the best part of the whole series, as in this part I will tell you, what to do to protect yourself from prying eyes, whether the prying eyes are of hackers, or oppressing regimes (This is such a relative term 🙂 ). It’s usually such a good feeling when you realize and appreciate …
The biggest threat to privacy is the attitude of “AH, what would someone do with my email address, phone number or social security number”. Thanks to the awareness in security and security terminology becoming a fad and the names of attacks becoming more and more attractive, non-security savvy people are starting to somewhat understand the …
