Chris LyneinTenable TechBlogStored XSS to RCE Chain as SYSTEM in ManageEngine ServiceDesk PlusGaining SYSTEM access via the help desk softwareAug 17, 2021Aug 17, 2021
Chris LyneinTenable TechBlogDumping PHP Opcodes Protected by SourceGuardianA detailed account of how I modified the Vulcan Logic Dumper to view PHP instructions protected by SourceGuardianJan 11, 2021Jan 11, 2021
Chris LyneinTenable TechBlogTP-Link Takeover with a Flash DriveCrafting symbolic links to root a TP-Link AC1750Nov 9, 2020Nov 9, 2020
Chris LyneinTenable TechBlogExamining a Phishing Vector in Plex Media ServerTechnical vulnerability analysis in Plex Media ServerJun 16, 2020Jun 16, 2020
Chris LyneinTenable TechBlogRemapping Python OpcodesI’ll take you step by step through how I recovered the source code of remapped compiled Python opcodes.May 7, 2020May 7, 2020
Chris LyneinTenable TechBlogGetting Root on macOS via 3rd Party Backup SoftwareChaining vulnerabilities in Druva inSync for local privilege escalationApr 22, 2020Apr 22, 2020
Chris LyneinTenable TechBlogInadequate Patch in Hewlett Packard Enterprise iMC 7.3 E0703BackgroundOct 1, 2019Oct 1, 2019
Chris LyneinTenable TechBlogAn Exploit Chain Against Citrix SD-WANMultiple vulnerabilities to pivot through the Citrix SD-WANJul 11, 2019Jul 11, 2019
Chris LyneinTenable TechBlogIntro to CakePHP for Bug HuntersA short guide to help you fast track your huntJun 12, 20194Jun 12, 20194
Chris LyneinTenable TechBlogVerizon Fios Router Authenticated Command InjectionRooting the Verizon Fios Quantum GatewayApr 9, 2019Apr 9, 2019