CODE WHITE - FINEST HACKING
Intelligence Driven Security
Initial Assessment
Security Intelligence Service
About us
PUBLIC VULNERABILITY LIST
ReportFileResolver Absolute Path Traversal in Telerik Reporting
SPThemeBackgroundImageUri Relative Path Traversal in SharePoint
Multiple Vulnerabilities in Syncfusion ASP.NET MVC
...
CAREERS
Challenge
Senior Red Teamer
Senior Penetration Tester
Vulnerability Intelligence Analyst
BLOG
Teaching the Old .NET Remoting New Exploitation Tricks
Leaking ObjRefs to Exploit HTTP .NET Remoting
Exploiting ASP.NET TemplateParser — Part II: SharePoint (CVE-2023-33160)
...
>
CODE WHITE | Red Teaming & Attack Surface Management
>
Credits
>
Nikolas Sotiriu
Accessible Logs in Spectrum
Authenticated XXE in Spectrum
Authentication Bypass in Spectrum
Deserialization of Untrusted Data in Spectrum
HardCoded not changable credentials in Spectrum
Serverside Request Forgery TestDataServiceRequest in Spectrum
Serverside Request Forgery testDeviceConnection in Spectrum
Unprotected JMX Registry in Spectrum
