advisory – Page 2 – Pentest Blog

Unexpected Journey #4 – Escaping from Restricted Shell and Gaining Root Access to SolarWinds Log & Event Manager (SIEM) Product

March 17, 2017March 17, 2017 Mehmet Ince 10 Comments

By time goes, I’ve found myself more focusing on SIEM product during penetration test. This is the fourth article of my article series called as “Unexpected Journey” which all of them focused on different SIEM products. In this article, I will share the details how I’ve got root access to the SolarWinds Log & Event Management product. Read More

Unexpected Journey #3 – Visiting Another SIEM and Uncovering Pre-auth Privileged Remote Code Execution

March 10, 2017March 16, 2017 Mehmet Ince 2 Comments

This is the third part of our article series that intended to share my real-life penetration testing experience.In this article, I will share a whole process of how we managed to find a -0day- pre-auth RCE vulnerability on another SIEM product. Read More

Advisory | CVE-2017-6398 Trend Micro InterScan Messaging Security (Virtual Appliance) Remote Code Execution

February 16, 2017March 17, 2017 Mehmet Ince Leave a comment

In this article, we will show details and metasploit module for vulnerability that affects Trend Micro’s IMSVA solution.