Skip to content

"If the enemy leaves a door open, you must rush in." – Sun Tzu

Search for:

About Me
Disclaimer
Tools

Weather forecasts

January 15, 2003 Uncategorized Comments Off on Weather forecasts

There is now weather forecasts (and current) available for Brussels, Belgium.
Still deploying the future interface. Be patient! 🙂

Post navigation

« Pic upload test!

Happy Birthday to my job! »

Stay in Touch

Upcoming Events

Here is a list of events that I will attend and cover via Twitter and wrap-ups. Ping me if you want to meet! The list is regularly updated.

Recent Articles

Pass-The-Salt 2019 Wrap-Up
[SANS ISC] Interesting JavaScript Obfuscation Example
[SANS ISC] Behavioural Malware Analysis with Microsoft ASA
[SANS ISC] The Risk of Authenticated Vulnerability Scans
[SANS ISC] From Phishing To Ransomware?

Popular Articles

Show me your SSID’s, I’ll Tell Who You Are! 35,559 views
Keep an Eye on SSH Forwarding! 33,034 views
Sending Windows Event Logs to Logstash 27,851 views
Check Point Firewall Logs and Logstash (ELK) Integration 23,615 views
Socat, Another Network Swiss Army Knife 23,056 views
Forensics: Reconstructing Data from Pcap Files 19,920 views
dns2tcp: How to bypass firewalls or captive portals? 18,826 views
Vulnerability Scanner within Nmap 18,141 views
Post-BruCON Experience – Running a Wall of Sheep in the Wild 16,488 views
Bash: History to Syslog 13,694 views

Recent Tweets

21st of July (Belgian national day) or not... riding first! ;) pic.twitter.com/jk488o9ob0
July 21, 2019 14:58
Dear $VENDOR, when you provide #MITRE ATT&CK techniques in a paper or article, instead of just listing them, why no… twitter.com/i/web/status/11520…
July 19, 2019 07:24
When you analyze a malicious script and found back a version from 2012… #MalwareArcheology pic.twitter.com/4mNF972rzp
July 18, 2019 21:57
Let’s kill some cryptominer… Some suspicious process names #IoC pic.twitter.com/c2H4wfQw74
July 18, 2019 08:57
"MITRE ATT&CK Framework Not Just for the Big Guys" < This! www.darkreading.com/operations…
July 18, 2019 08:38

Time Machine

Time Machine

NVD Vulnerabilities Feed

CVE-2018-17792 (mdaemon_webmail) July 19, 2019
MDaemon Webmail (formerly WorldClient) has CSRF.
CVE-2019-1010241 (credentials_binding) July 19, 2019
Jenkins Credentials Binding Plugin Jenkins 1.17 is affected by: CWE-257: Storing Passwords in a Recoverable Format. The impact is: Authenticated users can recover credentials. The component is: config-variables.jelly line #30 (passwordVariable). The attack vector is: Attacker creates and executes a Jenkins job.
CVE-2019-1010142 (scapy) July 19, 2019
scapy 2.4.0 is affected by: Denial of Service. The impact is: infinite loop, resource consumption and program unresponsive. The component is: _RADIUSAttrPacketListField.getfield(self..). The attack vector is: over the network or in a pcap. both work.
CVE-2019-13984 (directus_7_api) July 19, 2019
Directus 7 API before 2.3.0 does not validate uploaded files. Regardless of the file extension or MIME type, there is a direct link to each uploaded file, accessible by unauthenticated users, as demonstrated by the EICAR Anti-Virus Test File.
CVE-2019-12946 (elcom_cms) July 19, 2019
Elcom CMS before 10.7 has SQL Injection via EventSearchByState.aspx and EventSearchAdv.aspx.
CVE-2019-13972 (layerbb) July 19, 2019
LayerBB 1.1.3 allows XSS via the application/commands/new.php pm_title variable, a related issue to CVE-2019-17997.
CVE-2019-13973 (layerbb) July 19, 2019
LayerBB 1.1.3 allows admin/general.php arbitrary file upload because the custom_logo filename suffix is not restricted, and .php may be used.
CVE-2019-13974 (layerbb) July 19, 2019
LayerBB 1.1.3 allows conversations.php/cmd/new CSRF.

Copyright Xavier Mertens © 2003-2018 | Powered by Xavier Mertens Consulting.

This website uses cookies to improve your experience. By using our services, you agree to our use of cookies. Accept Learn more

Privacy & Cookies Policy