Skip to main content

Research

What’s next for Data breaches? Security advisory, tools and more...

Advisory: Squirrelmail Remote Code Execution

Release date: 2017-04-19

Advisory: Microsoft Remote Desktop Client for Mac Remote Code Execution

Release date: 2016-12-07

Updated: 2017-01-23

Tool: Htcap beta 1.0, now it's a vulnerability scanner

Release date: 2016-02-26

Advisory: Symphony CMS Multiple Vulnerabilities

Release date: 2016-02-08

Advisory: Projectsend Multiple Vulnerabilities

Release date: 2016-01-29

Tool: htcap - web application analysis tool

Release date: 2015-06-25

Advisory: Lychee Remote Code Execution

Release date: 2015-04-15

Advisory: DokuWiki Persistent Cross Site Scripting

Release date: 2015-03-23

Advisory: Multiple vulnerabilities in LogAnalyzer

Release date: 2012-05-23

Advisory: OSClass directory traversal vulnerability

Release date: 2012-03-07

Advisory: Multiple vulnerabilities in OSClass

Release date: 2012-01-27

Advisory: Multiple vulnerabilities in postfixadmin

Release date: 2012-01-26

Advisory: Mibew messenger multiple XSS

Release date: 2012-01-24

 

Old stuff

Those are our works for the past years, they link to Securityfocus or Packetstorm


Secunia Security Advisory 29675

Posted Apr 16, 2008

Secunia Security Advisory - poplix has reported some vulnerabilities in Parallels VZPP, which can be exploited by malicious people to conduct cross-site request forgery attacks and potentially compromise a vulnerable system.

Secunia Security Advisory 28239

Posted Dec 28, 2007

Secunia Security Advisory - poplix has discovered a vulnerability in PDFlib, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.

pdflib-overflows.txt

Posted Dec 24, 2007

pdflib, a library used for generating PDFs on the fly, suffers from multiple buffer overflow vulnerabilities due to the use of strcpy().

gwcheck.c

Posted Dec 24, 2007

gwcheck is a simple program that checks if a host in an ethernet network is a gateway to Internet.

gmailsteal_remote.scpt.txt

Posted Sep 30, 2007

This script can be used to steal G-Mail's keychained password by injecting javascript into Safari. When executed it opens G-Mail's login page, reads the saved password and sends it to a logging server by creating an hidden iframe into G-Mail's page.

gmailsteal_local.scpt.txt

Posted Sep 30, 2007

This script can be used to steal G-Mail's keychained password by injecting javascript into Safari. When executed it opens G-Mail's login page, reads the saved password and prompts it into an alert box.

cotv2-dos.txt

Posted Feb 6, 2007

cotv 2.0 suffers from a client-side denial of service vulnerability due to a lack of validation. Demonstration exploit included.

Secunia Security Advisory 23332

Posted Dec 14, 2006

Secunia Security Advisory - poplix has reported a vulnerability in D-LINK DWL-2000AP+, which can be exploited by malicious people to cause a DoS (Denial of Service).

Secunia Security Advisory 22674

Posted Nov 3, 2006

Secunia Security Advisory - poplix has discovered a vulnerability in iodine's client, which can be exploited by malicious people to compromise a user's system.

eNM-0.0.1.txt

Posted Oct 31, 2006

easy notes manager (eNM) version 0.0.1 is affected by multiple SQL injection issues. POC included that demonstrates how to bypass authentication.

tripp-alpha0.2.tar.gz

Posted Jun 26, 2006

TRIPP is a utility to rewrite incoming and outgoing IP packets. Since it can rewrite both headers and payload, it can be used to configure the tcp/ip stack behavior in order to perform various tasks mainly intended for network tests, simulations and development.

payload-rewrite_exploit.txt

Posted Jun 26, 2006

Small whitepaper discussing how to use payload rewriting to exploit remote buffer overflow vulnerabilities.

tripp-alpha0.1.tar.gz

Posted Feb 22, 2006

TRIPP is a utility to rewrite incoming and outgoing IP packets. Since it can rewrite both headers and payload, it can be used to configure the tcp/ip stack behavior in order to perform various tasks mainly intended for network tests, simulations and development.

p0fspoof.txt

Posted Feb 14, 2006

A paper discussing passive OS fingerprinting and spoofing OpenBSD pf "os" rulesets.

authsyn.tgz

Posted Feb 14, 2006

proof-of-concept tool for performing passive OS fingerprint spoofing to bypass OpenBSD pf firewall rules.

tripp_test.1c.tar.gz

Posted May 7, 2005

TRIPP is a utility to rewrite outgoing IP packets. Since it can rewrite both header and payload data, it combines functionality found in iptables as well as netsed. This can be useful for performing replay attacks, altering your own OS fingerprint, or for bypassing remote firewalls.