Self Driving Kia

This is just a short one, because everything else is everywhere else. So here is the story, I do a lot of travelling, not a huge amount, but enough. About once a week I do 650km in a day, and I have a work day in the middle of it. Fatigue from driving is real, […]

Read more "Self Driving Kia"

Vulnhub – Mr Robot Walkthrough

Mr Robot Find the machine here on Vulnhub,151/ Warning If you haven’t finished getting all three Flags, don’t go any further. Do not ruin it for youself!! BUT, I have written this for the person who has no idea how to do it, or wants new ideas. So if you have downloaded this machine, […]

Read more "Vulnhub – Mr Robot Walkthrough"

Thermofisher dataTaker – Insecure by Design – CVE-2017-11349

Introduction Thermofisher dataTaker DT8x devices offer little security, and clear text configuration visible to users without any log in process. The products website: Vulnerable Versions While only DT8x devices have been inspected, it would be unlikely that other models are not also affected by this design issue. Only Firmware 1.72.007 was observed in the […]

Read more "Thermofisher dataTaker – Insecure by Design – CVE-2017-11349"

Dahua NVR – Multiple Exposures (CVE-2017-6341 CVE-2017-6342 CVE-2017-6343)

Introduction Responsible Disclosure Timeline. 2016-10-10: Sent to both the Australian Importer and Dahua, everything mentioned here plus more. The Importer was also called to discuss the issues. 2016-10-17 (approx): Followed up verbally with the importer a couple weeks later (phone). 2016-11-14: Contacted both the Importer and Dahua for an update. Apart from when I rang […]

Read more "Dahua NVR – Multiple Exposures (CVE-2017-6341 CVE-2017-6342 CVE-2017-6343)"