Monthly Archive for: ‘March, 2012’

  • Screen Shot 2012 03 23 At 1.48.07 AM

    FreePBX Exploit Phone Home

    During a routine scan of new vulnerability reports for the Exploit Database, we came across a single post in full disclosure by Martin Tschirsich, about a Remote Code Execution vulnerability in FreePBX. This vulnerability sounded intriguing, and as usual, required verification in the EDB. At …

    Read More →
  • Word Header V2.3

    Sample Penetration Test Report

    There are two different ways of doing things in this InfoSec world we are in. We can chase the money, or we can focus on doing what we feel is right. Then do that with passion. At Offensive Security, it has always been about doing …

    Read More →