Category: pentest

Hacking Hardware Password Managers: Royal Vault Password Keeper
A Zero Day Latest News, pentest

Hacking Hardware Password Managers: Royal Vault Password Keeper

TL;DR: Taking three hardware password managers I used them to: Learn the basics of hardware hacking Practice disassembling Perform chipset research Understand pinouts and protocols ... Read More

Hacking Hardware Password Managers: passwordsFAST
A Zero Day Latest News, pentest

Hacking Hardware Password Managers: passwordsFAST

TL:DR Taking three hardware password managers I used them to: Learn the basics of hardware hacking Practice disassembling Perform chipset research Understand pinouts and protocols ... Read More

Hacking Hardware Password Managers: The RecZone
A Zero Day Latest News, pentest

Hacking Hardware Password Managers: The RecZone

TL:DR Hardware security can be difficult to fathom, so I set out to research three password vaults as a newbie, sharing my findings. I picked ... Read More

Nuclear Satcoms
A Zero Day Latest News, pentest

Nuclear Satcoms

The Fukushima Daiichi nuclear incident in 2011 has led to safety changes that may have an interesting knock-on effect on reactor security. Loss of telemetry ... Read More

Commands and Tools for Embedded Reverse Engineering
A Zero Day Latest News, pentest

Commands and Tools for Embedded Reverse Engineering

We’ve been training a lot of people to look at embedded systems. The training is intensive, and it can be hard to remember all the ... Read More

The snooping girl on a train, again. How to compromise a business
A Zero Day Latest News, pentest

The snooping girl on a train, again. How to compromise a business

  So, I’m on a train, again, sat at a four-seat table, next to two men facing each other. From their conversation and interactions I’ve ... Read More

Embedded device research. The tools you’ll need
A Zero Day Latest News, pentest

Embedded device research. The tools you’ll need

Over the last couple of years, we’ve run many courses on embedded device security. The focus is often defensive, but all the courses have an ... Read More

ASIS CTF — ShareL Walkthrough
android-hook, android-security

ASIS CTF — ShareL Walkthrough

ASIS CTF — ShareL WalkthroughHello, The reader of this walkthrough should know these topics:Android application vulnerability assessmentHooking with FridaWeb application vulnerability assessmentFuzzingThe participants were given an APK. Opening the ... Read More

The Disgruntled Employee?
A Zero Day Latest News, pentest

The Disgruntled Employee?

When we talk about cyber threat actors one of the terms we use is “Disgruntled Employee”. Everyone knows what that means; someone who is fed ... Read More