(or How We Accidentally DoS’ed a Buggy FTP Server on an Under-powered Host with a TCP Connect Scan) In this post, I’m going to share an interesting bug in some not-widely used but freely available FTP server software when experimenting with different parameters to Nmap scans. The particular server, which I’ll just call Server X, … Read More “When Reconnaissance Breaks Things” »
With the recent release of VirtualBox 7 and Siege beginning trial evaluations of our new R4NG3R framework for cyber-experimentation, I want to take a look back at a fun technique that we used for getting files transferred into VirtualBox virtual machines when using the VirtualBox API exposed through the web service bindings. Background During our … Read More “Shapeshifting Files for VirtualBox: Hijacking RAW Floppy Images for Remote File Transfer” »
Joshua Taylor 16 August 2022 A Riddle Our CEO recently posed a riddle in a monthly newsletter. It’s an old classic, and it’s been republished in many places, and in several variations: You’re in a room with three switches that control three lightbulbs in another room. You can’t see the light bulbs until you go … Read More “Illuminating Side Channel Attacks” »