Showing 1 - 8 of 8

Files from Marco Ortisi

Pulse Secure Client For Windows Local Privilege Escalation: Posted Jun 16, 2020; Authored by Marco Ortisi, redtimmysec, Giuseppe Cali | Site redtimmy.com; Red Timmy Sec has discovered that Pulse Secure Client for Windows suffers from a local privilege escalation vulnerability in the PulseSecureService.exe service.; tags | advisory, local; systems | windows; advisories | CVE-2020-13162; SHA-256 | 5f5a0396cb9bd8b8918531a470f34efbfce05c416ca68a1d578867b7468c1362; Download | Favorite | View

HP Performance Monitoring xglance Privilege Escalation: Posted May 4, 2020; Authored by Tim Brown, h00die, Marco Ortisi, Robert Jaroszuk | Site metasploit.com; This Metasploit module is an exploit that takes advantage of xglance-bin, part of HP's Glance (or Performance Monitoring) version 11 and subsequent, which was compiled with an insecure RPATH option. The RPATH includes a relative path to -L/lib64/ which can be controlled by a user. Creating libraries in this location will result in an escalation of privileges to root.; tags | exploit, root; advisories | CVE-2014-2630; SHA-256 | d8c4bb35d621bfc8cf65e13632145031a44e20cc02cc3e3045d3ba14a00ed48b; Download | Favorite | View

Oce Colorwave 500 CSRF / XSS / Authentication Bypass: Posted Mar 19, 2020; Authored by Marco Ortisi, redtimmysec, Giuseppe Cali; Oce Colorwave 500 printer suffers from authentication bypass, cross site request forgery, and cross site scripting vulnerabilities.; tags | advisory, vulnerability, xss, bypass, csrf; advisories | CVE-2020-10667, CVE-2020-10668, CVE-2020-10669, CVE-2020-10670, CVE-2020-10671; SHA-256 | cb5874cc976834228bc185741becb79371ed3b619e098dbdd4244f3a27610bf7; Download | Favorite | View

Running Encrypted ELF Binaries In Memory: Posted Mar 4, 2020; Authored by Marco Ortisi, redtimmysec; Whitepaper called Blue Team vs. Red Team: How to run your encrypted binaries in memory and go undetected. This paper discusses the golden frieza project.; tags | paper; SHA-256 | 326178d7c2a2126ac27509f46a4346cfb02ff83ca3fc2a5d381a2e1d830ce3ec; Download | Favorite | View

xglance-bin Local Root Privilege Escalation: Posted Feb 5, 2020; Authored by Tim Brown, Marco Ortisi, Robert Jaroszuk; xglance-bin local root privilege escalation exploit that has been tested on Linux RHEL 7.x/8.x systems.; tags | exploit, local, root; systems | linux; advisories | CVE-2014-2630; SHA-256 | d27e4f2ed6ba8d5e7e900a787e939d59f6386be68ee424e030c1c37dbe438c85; Download | Favorite | View

Jenkins Groovy Scripts For Red Teamers And Penetration Testers: Posted Sep 10, 2019; Authored by Marco Ortisi, Ahmad Mahfouz; Whitepaper called Jenkins Groovy Scripts for Red Teamers and Penetration Testers.; tags | paper; SHA-256 | 5e6b7c106c03710dff448e081a389d32962fea27101a434d73669f8d4d9365e2; Download | Favorite | View

Flexpaper 2.3.6 Remote Code Execution: Posted Mar 8, 2019; Authored by Marco Ortisi; Whitepaper discussing Flexpaper versions 2.3.6 and below which suffer from a remote code execution vulnerability.; tags | exploit, paper, remote, code execution; SHA-256 | 292c7c17c2c2ed399b585bca4715d382224b01fb5afa43ea6b7792062686285d; Download | Favorite | View

Stack Overflow: Automatic write() Discovery: Posted Feb 4, 2011; Authored by Marco Ortisi; Whitepaper called Stack Overflow: Automatic write() Discovery.; tags | paper, overflow; SHA-256 | 7dd20ddde34b4bd6b3184e835048ba165de8f2a67f78832df404359fc6900db5; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days