Centreon v19.04 Remote Code Execution (CVE-2019-13024)

Posted on by Askar

Estimated Reading Time: 6 minutes Summary about Centreon Centreon is a free and open source infrastructure monitoring software, Centreon allows the system administrators to monitor their infrastructure from a centralized web application, Centreon has become the number 1 open source solution for enterprise monitoring in Europe. About the exploit The exploitation triggers by adding an arbitrary command in the nagios_bin…

Bypassing Kaspersky Endpoint and Cloud SandBox (real world pentest case)

Posted on by Ahmed Khlief

Estimated Reading Time: 5 minutes Introduction Kaspersky is one the of leading anti-virus in the market with more 400M user using this product, the malware threat still exist and can bypass this technology. in this article i will explain how i bypassed kaspersky enterprise version along with their cloud sandbox while i was conducting penetration testing for a company. Anti-virus…

LibreNMS v1.46 Remote Code Execution (CVE-2018-20434)

Posted on by Askar

Estimated Reading Time: 7 minutes Summary about LibreNMS LibreNMS is an open source, powerful and feature-rich auto-discovering PHP based network monitoring system which uses the SNMP protocol. It supports a broad range of operating systems including Linux, FreeBSD, as well as network devices including Cisco, Juniper, Brocade, Foundry, HP and many more. About the exploit The exploitation triggers by adding…