Blog

Demo of how to exploit Privilege Escalation vulnerability in Cisco WebEx client application. Any authenticated user can exploit this vulnerability and gain system level access on any computer in enterprise. Demo shows how a normal user can modify local administrator group membership.

Password hashes can be easily captured by hackers; they can host malicious web page and get users to visit their page and capture the password hashes. These hashes can be cracked offline. Similar attack can also be done by sending malicious email.

Wireless networks are used in almost all enterprises now. Many organisations are still using WPA2 PSK encryption for their wifi security. Many IoT devices are also using either WPA2 to connect with corporate wifi. This video shows how easily you can break WPA2 wifi security and get the pre-shared key.

RDP is commonly used by administrators to do routine maintenance tasks. Once hacker has got initial foodhold; compromising domain admin credentials is very easy using RDP MITM. This short clips walks through the process.