Paul Bolton

Three Random Words – An adventure in passphrase cracking

During a recent red team engagement, we came across several useful artefacts after compromising an IT helpdesk user account. One of particular interest contained a list of useful sites, including a well-known password generator site. This is one of a class of sites that generate a password by selecting a number, say 4, random words […]

Three Random Words – An adventure in passphrase cracking Read More »

Vulnerabilities in EasyInstall asset management

Several months ago, whilst on a client engagement, I identified a number of zerodays in an enterprise asset management application called EasyInstall. This gave me, among other things, elevation of privilege on managed assets, a wealth of information for recon, and – most interestingly – unauthenticated remote secure wipe of any asset. The blog on

Vulnerabilities in EasyInstall asset management Read More »