CVE-2021-36697 With an admin account, the .htaccess file in Artica Pandora FMS <=755 can be overwritten with the File Manager component. The new .htaccess file contains a Rewrite Rule with a type definition.... cve.mitre.org/cgi-bin/cvenam…

#TPLINK #cybersecurity #rce #cve #hacking #routerhacking #kpmghungary I found an RCE vulnerability in a TP-Link TL-WR840N EU V5 router (CVE-2021-41653). The technical details can be found here: k4m1ll0.com/cve-2021-41653…

CVE-2021-41653 The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field. cve.mitre.org/cgi-bin/cvenam…

#hackersuli #hacking #cybersecurity #tplink #routerexploit Yesterday I was a guest speaker on #hackersuli. You can find the video here (Note: It is in Hungarian. ) youtube.com/watch?v=fbyle0…

The FortiGuard Labs team recently encountered a MANGA (aka Dark) campaign that’s currently being distributed in the wild targeting TP-link wireless routers. It leverages a recently post-authenticated RCE vulnerability released barely two weeks prior. fortinet.com/blog/threat-re…

k4m1ll0 Fortinet FortiGuard Labs #DarkMirai #botnet spreads targeting #RCE on TP-Link routers securityaffairs.co/wordpress/1254… #securityaffairs #malware

I didn’t think I would touch a Pandora FMS again ... but life has a sense of humor I couldn’t sleep and I played a little bit with HTB and it was Pandora again! hackthebox.com/achievement/ma… #hackthebox #htb #cybersecurity

#tplink #passwordreset #exploit #cve k4m1ll0.com/cve-tplink-tlw…

CVE-2021-46122 : Tp-Link TL-WR840N EU v6.20 Firmware 0.9.1 4.17 v0001.0 Build 201124 Rel.64328n is vulnerable to Buffer Overflow via the Password reset feature.... cve.report/CVE-2021-46122

#tplink #cve #hacking #uartshell CVE-2022-29402 is out. k4m1ll0.com/cve-tplink-tlw…

#hacking #Windows11 #ShiftF10Bypass #privesc #Microsoft #autopilot #cybersecurity With the information, everyone can decide whether it is necessary to protect themselves or not. Technical details: k4m1ll0.com/ShiftF10Bypass… Bypass Video: youtu.be/Q8oZiFiXco0

#hacking #powershell LOL blackhillsinfosec.com/constrained-la…

#Hackthebox #Fortress #Pwned I had no idea what is a #Fortress on #HTB. Akerva was funny.

Bloodhound python from Dirk-jan is now integrated to CrackMapExec as a core feature 🔥 ▶️ cme ldap <ip_dc> -u user -p pass --bloodhound Enjoy this one, more juicy features to come soon 💪 Pushed on Porchetta Industries thanks to the sponsors as always 🪂

#hacking #redteam #Forcepoint #DLP #initialaccess #phishing vicarius.io/vsociety/posts…

#k4m1ll0 #hacking #hacker #newhomepage The purpose of my website has constantly changed in recent years. It was long overdue for a change. k4m1ll0.com

#aws #redteam #hacktricks #arte #cloud #hacking I spent the last two months studying. It took me at least 3-4 hours every day, even on holidays, but it was worth it.

A new Hungarian hacker community #Cylantro has been established. It's an old dream that is now coming true.

I recently completed binary-offensive.com's "Modern Initial Access and Evasion Tactics" training course. mgeeky | Mariusz Banach: ty! I recommend the course to Hackers and Red Teamers. #RedTeam #BinaryOffensive #InitialAccess #Training #CyberSecurity

#itbn #kpmg #router #hacking