Uncategorized

Lets Encrypt Failure – It was DNS(ish) – a conspiracy of coincidences

Over the weekend I enabled DNSSec on this site and blogged about it [1]. Today Lets Encrypt renewed the certificate on the Origin Server via DNS-01 – its setup uses CNAMEs to allow internal devices to get public certs, described in an earlier blog post [2]. The certificate renewal failed. Considering it has worked since

Lets Encrypt Failure – It was DNS(ish) – a conspiracy of coincidences Read More »

Three Random Words – An adventure in passphrase cracking

During a recent red team engagement, we came across several useful artefacts after compromising an IT helpdesk user account. One of particular interest contained a list of useful sites, including a well-known password generator site. This is one of a class of sites that generate a password by selecting a number, say 4, random words

Three Random Words – An adventure in passphrase cracking Read More »

Vulnerabilities in EasyInstall asset management

Several months ago, whilst on a client engagement, I identified a number of zerodays in an enterprise asset management application called EasyInstall. This gave me, among other things, elevation of privilege on managed assets, a wealth of information for recon, and – most interestingly – unauthenticated remote secure wipe of any asset. The blog on

Vulnerabilities in EasyInstall asset management Read More »