Open in app
Sign inGet started
Multiples WordPress plugins CVE analysis

Multiples WordPress plugins CVE analysis

WordPress Core is the most popular web Content Management System (CMS). This free and open-source CMS written in PHP allows developers to…
Go to the profile of Joshua Martinelle
Joshua Martinelle
Silo, or not silo, that is the question

Silo, or not silo, that is the question

Is putting most of the critical assets in a silo a good practice or does it lower your security level ? Example with a WSUS.
Go to the profile of Gabriel Compan
Gabriel Compan
SMB “Access is denied” caused by anti-NTLM relay protection

SMB “Access is denied” caused by anti-NTLM relay protection

Explanations of the “Microsoft network server: Server SPN target name validation level” hardening policy: what it does, how to…
Go to the profile of Clément Notin [Tenable]
Clément Notin [Tenable]
G-3PO: A Protocol Droid for Ghidra

G-3PO: A Protocol Droid for Ghidra

(A Script that Solicits GPT-3 for Comments on Decompiled Code)
Go to the profile of Olivia Lucca Fraser
Olivia Lucca Fraser
NETGEAR Router Network Misconfiguration

NETGEAR Router Network Misconfiguration

Last Minute Patch Thwarts Pwn2Own Entries
Go to the profile of James Sebree
James Sebree
How to mimic Kerberos protocol transition using reflective RBCD

How to mimic Kerberos protocol transition using reflective RBCD

As I am often looking for misconfigurations dealing with Kerberos delegation, I realize that I was missing an interesting element while…
Go to the profile of Gabriel Compan
Gabriel Compan
Wordpress 6.0.3 Patch Analysis

Wordpress 6.0.3 Patch Analysis

Summary
Go to the profile of Joshua Martinelle
Joshua Martinelle
Decrypt Kerberos/NTLM “encrypted stub data” in Wireshark

Decrypt Kerberos/NTLM “encrypted stub data” in Wireshark

I often use Wireshark to analyze Windows and Active Directory network protocols, especially those juicy RPC 😉 But I’m often interrupted in…
Go to the profile of Clément Notin [Tenable]
Clément Notin [Tenable]
Extracting Ghidra Decompiler Output with Python

Extracting Ghidra Decompiler Output with Python

Ghidra’s decompiler, while not perfect, is pretty darn handy. Ghidra’s user interface, however, leaves a lot to be desired. I often find…
Go to the profile of James Sebree
James Sebree
Logging Passwords in Plaintext in Azure Arc

Logging Passwords in Plaintext in Azure Arc

Microsoft’s Azure Arc is a management platform designed to bridge multi-cloud and similarly mixed environments together in a convenient…
Go to the profile of James Sebree
James Sebree
About Tenable TechBlogLatest StoriesArchiveAbout MediumTermsPrivacy