CODE WHITE - FINEST HACKING
Intelligence Driven Security
Initial Assessment
Security Intelligence Service
About us
PUBLIC VULNERABILITY LIST
Insecure NET Remoting in Project Center Server
SSRF NetNTLM Leaks in Tableau Server
Authentication Bypass in AI BOX
...
CAREERS
Challenge
Pentester / Redteamer
Threat Intelligence Analyst
BLOG
Leaking ObjRefs to Exploit HTTP .NET Remoting
Exploiting ASP.NET TemplateParser — Part II: SharePoint (CVE-2023-33160)
Exploiting ASP.NET TemplateParser — Part I: Sitecore (CVE-2023-35813)
...
>
CODE WHITE - Finest Hacking
>
Credits
>
Fabian Weber
Authenticated Remote Code Execution in GridVis
HardCoded Encryption Password Allows for Authenticated Leak of Cleartext Database Credentials in GridVis
Unauthenticated Arbitrary File Write as Root in PROFINET-INspector NT
Unauthenticated OS Command Injection in PROFINET-INspector NT