Rapid7
Back to Blog

Posts tagged Research

NICER Protocol Deep Dive: Internet Exposure of Microsoft SQL Server (MS SQL) (UDP/1434)

Threat Research

NICER Protocol Deep Dive: Internet Exposure of Microsoft SQL Server (MS SQL) (UDP/1434)

Tod Beardsley's avatar

Tod Beardsley

Behind the Scenes: Under the Hoodie 2020 Video Series

Exposure Management

Behind the Scenes: Under the Hoodie 2020 Video Series

Bri Hand's avatar

Bri Hand

Don’t Put It on the Internet: Tesla Backup Gateway Edition

Threat Research

Don’t Put It on the Internet: Tesla Backup Gateway Edition

Derek Abdine's avatar

Derek Abdine

NICER Protocol Deep Dive: Internet Exposure of MySQL

Threat Research

NICER Protocol Deep Dive: Internet Exposure of MySQL

Tod Beardsley's avatar

Tod Beardsley

Rapid7 Analysis: CVE-2020-3992 — ESXi OpenSLP remote code execution vulnerability

Threat Research

Rapid7 Analysis: CVE-2020-3992 — ESXi OpenSLP remote code execution vulnerability

Rapid7 Labs's avatar

Rapid7 Labs

SaltStack Pre-Authenticated Remote Root (CVE-2020-16846 and CVE-2020-25592): What You Need to Know

Threat Research

SaltStack Pre-Authenticated Remote Root (CVE-2020-16846 and CVE-2020-25592): What You Need to Know

boB Rudis's avatar

boB Rudis

Rapid7 Analysis: CVE-2020-16846 — SaltStack Unauthenticated Shell Injection

Threat Research

Rapid7 Analysis: CVE-2020-16846 — SaltStack Unauthenticated Shell Injection

Rapid7 Labs's avatar

Rapid7 Labs

Rapid7 Analysis: CVE-2020-25592 — SaltStack Authentication Bypass and Salt SSH Command Execution

Threat Research

Rapid7 Analysis: CVE-2020-25592 — SaltStack Authentication Bypass and Salt SSH Command Execution

Rapid7 Labs's avatar

Rapid7 Labs

This One Time on a Pen Test: How I Hacked a Self-Driving Car

Threat Research

This One Time on a Pen Test: How I Hacked a Self-Driving Car

Jonathan Stines's avatar

Jonathan Stines

Rapid7 Analysis: CVE-2020-14871

Threat Research

Rapid7 Analysis: CVE-2020-14871

Rapid7 Labs's avatar

Rapid7 Labs

NICER Protocol Deep Dive: Internet Exposure of Citrix ADC/NetScaler

Threat Research

NICER Protocol Deep Dive: Internet Exposure of Citrix ADC/NetScaler

Tod Beardsley's avatar

Tod Beardsley

The Story Behind Security Breaches

Exposure Management

The Story Behind Security Breaches

Laurel Marotta's avatar

Laurel Marotta

Rapid7 Analysis: CVE-2020-17087 Windows Kernel local privilege escalation 0day

Threat Research

Rapid7 Analysis: CVE-2020-17087 Windows Kernel local privilege escalation 0day

Rapid7 Labs's avatar

Rapid7 Labs

Rapid7 Analysis: CVE-2020-14882 — Unauthenticated RCE in Console component of Oracle WebLogic Server

Threat Research

Rapid7 Analysis: CVE-2020-14882 — Unauthenticated RCE in Console component of Oracle WebLogic Server

Rapid7 Labs's avatar

Rapid7 Labs

NICER Protocol Deep Dive: Internet Exposure of Remote Desktop (RDP)

Threat Research

NICER Protocol Deep Dive: Internet Exposure of Remote Desktop (RDP)

Tod Beardsley's avatar

Tod Beardsley

Rapid7 Analysis: CVE-2020-15999 Chrome Freetype 0day

Threat Research

Rapid7 Analysis: CVE-2020-15999 Chrome Freetype 0day

Rapid7 Labs's avatar

Rapid7 Labs

Rapid7 Analysis: CVE-2020-5135

Threat Research

Rapid7 Analysis: CVE-2020-5135

Rapid7 Labs's avatar

Rapid7 Labs

Rapid7 Analysis: CVE-2020-16898 aka Bad Neighbor / Ping of Death Redux

Threat Research

Rapid7 Analysis: CVE-2020-16898 aka Bad Neighbor / Ping of Death Redux

Rapid7 Labs's avatar

Rapid7 Labs

Rapid7 Analysis: CVE-2020-16952 — Microsoft SharePoint Remote Code Execution Vulnerabilities

Threat Research

Rapid7 Analysis: CVE-2020-16952 — Microsoft SharePoint Remote Code Execution Vulnerabilities

Rapid7 Labs's avatar

Rapid7 Labs

PSA: Increase in RDP Attacks Means It's Time to Mind Your RDPs and Qs

Vulnerabilities and Exploits

PSA: Increase in RDP Attacks Means It's Time to Mind Your RDPs and Qs

boB Rudis's avatar

boB Rudis

This One Time on a Pen Test: Doing Well With XML

Threat Research

This One Time on a Pen Test: Doing Well With XML

Tommy Dew's avatar

Tommy Dew