Pumped Up for RSA ‘09
The annual RSA Conference will go off next week and Core will be there, hosting several presentations and meeting with our customers and partners to spread the doctrine of automated penetration testing.
View ArticleBehind the Curtain: A Journey into Reversing the Hyper-V VMBus Exploit...
A recently released module by the Exploit Writing Team here at Core generated a lot of emails to me from folks out there in Security Land asking for more information about the underlying vulnerability...
View ArticlePatch Wednesday
Patch Tuesday is over and colleagues are busy sorting through various remedies from Microsoft to figure out what they are fixing. (For more on this process in action, go here.) As you may know, Patch...
View ArticleAssessing MS12-020 Exposures with CORE Impact Pro
I’m pleased to announce that, as of this afternoon, CORE Impact customers are able to assess their environments for MS12-020, a new critical vulnerability announced by Microsoft as part of this Patch...
View ArticleImportantly Critical
Looking at the Microsoft Security Bulletin for May 2012 just issued this afternoon I suspect we will see a lot of noise regarding Bulletins 1, 2 and 3. However, it would be dangerous for IT...
View ArticleDown to the CORE: April 2012 IMPACT Report
It was an exciting month getting ready for the release of CORE Impact Pro v12.3 – including a lot of phone calls with customers to review how their feature requests were being implemented into Impact –...
View ArticleUsing the CORE Impact MS Word Web Bug Module
Did you happen to attend live or watch the recorded version of the SANS webcast Because Jail Is Not Fun – Hacking Back Legally and hear our friend John Strand mention the Impact MS Word Web Bug module...
View ArticleThe Ghosts of Microsoft: Patch, Present and Future.
Like most people who enjoy the benefits of drinking from the “Marketing cup” that include nice dinners and traveling to various trade-shows, I know this largesse comes with a price tag. One of the...
View ArticleMS15-083 – Microsoft Windows SMB Memory Corruption Vulnerability
On August 11, 2015 Microsoft released 14 security fixes, including an SMB Server fix. In this post I’ll explain how I triggered the SMB Server bug. Microsoft Security Bulletin MS15-083: Of all the...
View Article
