Windows Vista & Windows 7 Kernel Bug Can Bypass UAC
Now this is not the first time Windows UAC has hit the news for being flawed, back in February 2009 it was discovered that Windows 7 UAC Vulnerable – User Mode Program Can Disable User Access Control...
View ArticleMicrosoft Attack Surface Analyzer – Test Software Vulnerabilities
Attack Surface Analyzer is developed by the Security Engineering group, building on the work of our Security Science team. It is the same tool used by Microsoft’s internal product groups to catalogue...
View ArticleMicrosoft Unleashes Record Breaking Patch Tuesday – April 2011
We all love Patch Tuesday – no doubt about that right? Well Microsoft has blessed us this month with the biggest Patch Tuesday in the history of the program. That’s a good thing because it’s had some...
View ArticleMicrosoft Enhanced Mitigation Evaluation Toolkit (EMET)
The enhanced Mitigation Experience Toolkit (EMET) is designed to help prevent hackers from gaining access to your system. Software vulnerabilities and exploits have become an everyday part of life....
View ArticleNo BEAST Fix From Microsoft In December Patch Tuesday – But They Fixed Duqu Bug
It looks like Microsoft originally had a patch for the BEAST vulnerability, but for some reason they have withdrawn it for the December Patch Tuesday. It’s a pretty bumper crop of patches though with...
View ArticleMS12-020 RDP Exploit Code In The Wild
The big news that erupted towards the end of last week was about the latest pretty serious vulnerability patched quietly by Microsoft, AKA MS12-020 (which plenty of people are using to bait skiddies...
View ArticleMicrosoft Delivers 6 Out Of Band High Priority Security Updates
Now it was only last month when everyone was wrapped up in the MS12-020 RDP Exploit Code In The Wild issue. As it turns out, Microsoft have been hiding some more serious security issues under the...
View ArticleWindows XML Core Services Exploit Attacked In The Wild – CVE-2012-1889
Oh look, another serious flaw in Windows – and this one is really bad because it can be exploited directly in Internet Explorer. And even worse than that, this vulnerability is actually being exploited...
View ArticleClik here to view.
Microsoft Enhanced Mitigation Evaluation Toolkit (EMET) 3rd Party GUI
We published an article about Microsoft Enhanced Mitigation Evaluation Toolkit (EMET) when it came out back in June 2011. The Native GUI for EMET is in .NET and there are some situations or restricted...
View ArticleMicrosoft Patches Critical Security Vulnerabilities In Windows, Office, IE,...
Another huge raft of critical fixes has been pushed out by Microsoft across almost their entire range of products, including client and server side software and the Windows OS itself. It’s been a while...
View ArticleMicrosoft Rushes Out ‘Fix It’ For Internet Explorer 0-day Exploit
Pretty unusual for Microsoft but they’ve rushed out a fast fix for a 0-day Internet Explorer vulnerability which allows remote code execution and malware dropping. It doesn’t effect the latest version...
View ArticleClik here to view.
Windows Registry Infecting Malware Has NO Files
This is a pretty interesting use of the Windows Registry and reminds me a little of the transient drive-by malware used last year against Internet Explorer that left no files either – Another IE 0-Day...
View ArticleClik here to view.
Microsoft Schannel Vulnerabilty – Patch It NOW
So yah, it seems like every implementation of TLS is broken and some may say this Microsoft Schannel vulnerabilty is actually worse than Heartbleed. Why is it worse you ask? Because it allows remote...
View ArticleClik here to view.
Windows Credentials Editor (WCE) – List, Add & Change Logon Sessions
Windows Credentials Editor (WCE) is a security tool to list logon sessions and add, change, list and delete associated credentials (ex.: LM/NT hashes, plaintext passwords and Kerberos tickets). This...
View ArticleClik here to view.
OpenSSH On Windows – It’s Happening!
So it seems like getting rid of Ballmer was the best thing Microsoft has done in years, Satya is definitely pushing them in a much more positive direction with a focus on Azure and open sourcing...
View ArticleClik here to view.
Mimikatz – Gather Windows Credentials
Mimikatz is a tool to gather Windows credentials, basically a swiss-army knife of Windows credential gathering that bundles together many of the most useful tasks that you would perform on a Windows...
View ArticleClik here to view.
windows-privesc-check – Windows Privilege Escalation Scanner
Windows-privesc-check is standalone executable that runs on Windows systems. It tries to find misconfiguration that could allow local unprivileged users to escalate privileges to other users or to...
View ArticleClik here to view.
RWMC – Retrieve Windows Credentials With PowerShell
RWMC is a Windows PowerShell script written as a proof of concept to Retrieve Windows Credentials using only PowerShell and CDB command-line options (Windows Debuggers). It allows to retrieve...
View ArticleClik here to view.
TempRacer – Windows Privilege Escalation Tool
TempRacer is a Windows Privilege Escalation Tool written in C# designed to automate the process of injecting user creation commands into batch files with administrator level privileges. The code itself...
View ArticleClik here to view.
Apple Will Not Patch Windows QuickTime Vulnerabilities
Much like Adobe Flash, QuickTime from Apple is a bit of a relic some pretty serious, remote code execution type Windows QuickTime Vulnerabilities were recently discovered by Trend Micro. Apple has...
View Article