https://youtu.be/W-kR7I_PEHA The video above demonstrates an automated penetration test in a simple container escape scenario. In this video, in addition to using NSFOCUS's open-source cloud-native cyber range software Metarget (for quickly and automatically building vulnerable cloud-native target machine environments), NSFOCUS's own developed cloud-native attack suite Coogo is also utilized. Today,...
Tag: NSFOCUS Security Labs;
Metarget Update: Enhanced Open-Source Cyber Range with Over 330 Vulnerabilities and Seamless One-Click Recovery
When researching vulnerabilities, we often find that environment setup takes up a significant amount of time, and in comparison, the actual time spent testing PoCs and exploits may be relatively short. Meanwhile, there are excellent security projects in the open-source community, such as Vulhub and VulApps, which package vulnerability scenarios...
NSFOCUS Research Labs Acknowledged by MSRC for Reporting Azure Database Service RCE Vulnerability
Overview NSFOCUS received acknowledgments from the Microsoft Security Response Center (MSRC) for reporting Azure Database Service RCE Vulnerability. Azure Database for PostgreSQL - Flexible Server is a relational database service based on the open-source PostgreSQL database engine. It is a fully managed database-as-a-service that can handle mission-critical workloads, offering predictable performance,...
Innovative Access Control Approach Published in IEEE Transactions on Systems, Man, and Cybernetics: Systems
NSFOCUS Security Labs recently collaborated with the research team from the School of Computer Science at China University of Geosciences (Wuhan) on a research paper titled "Computable Access Control: Embedding Access Control Rules into Euclidean Space". This paper has been officially accepted and published online by the prestigious international journal...
Security Researcher from NSFOCUS Security Labs to Speak at Black Hat 2022 Europe
Gao Jian at NSFOCUS Security Labs was invited to speak at the Black Hat 2022 Europe held at ExCel London, United Kindom from December 5 to 8, 2022. Gao Jian specializes in industrial control system security, focusing on PLC and SCADA vulnerability exploitation and ICS security enhancement. He has helped...
