Kasif Dekel, Author at SentinelOne

Two high-severity flaws in popular end user security tools allow attackers to elevate privileges and compromise devices.

Security Research

Inside the Black Box | How We Fuzzed Microsoft Defender for IoT and Found Multiple Vulnerabilities

Kasif Dekel / April 13, 2022

A must-read for fuzzing fans, this post gives a detailed look at the advanced techniques used in our recent discovery of multiple bugs in Defender for IoT.

Security Research

Pwning Microsoft Azure Defender for IoT | Multiple Flaws Allow Remote Code Execution for All

Kasif Dekel / March 28, 2022

As if IoT & OT aren't hard enough to defend, we dive into five critical vulnerabilities in Microsoft Defender for IoT that leave the door wide open.

Security Research

USB Over Ethernet | Multiple Vulnerabilities in AWS and Other Major Cloud Services

Kasif Dekel / December 7, 2021

25 CVEs and counting: SentinelLabs' latest research reveals millions of cloud users are exposed to privilege escalations from bugs in shared driver software.

Security Research

CVE-2021-3437 | HP OMEN Gaming Hub Privilege Escalation Bug Hits Millions of Gaming Devices

Kasif Dekel / September 14, 2021

A high severity flaw in HP's OMEN Gaming Hub software allows any user to escalate privileges to kernel-level mode.

Security Research

CVE-2021-21551- Hundreds Of Millions Of Dell Computers At Risk Due to Multiple BIOS Driver Privilege Escalation Flaws

Kasif Dekel / May 4, 2021

Update your Dell devices now! SentinelLabs discover five high severity flaws in Dell firmware update driver impacting desktops, laptops, notebooks and more.

Security Research

CVE-2021-24092: 12 Years in Hiding – A Privilege Escalation Vulnerability in Windows Defender

Kasif Dekel / February 10, 2021

Windows Defender has contained an elevation of privilege vulnerability since at least 2009. Learn more about SentinelOne’s discovery, CVE-2021-24092, here.

Security Research

Introducing SentinelOne’s Ghidra Plugin for VirusTotal

Kasif Dekel / December 14, 2020

Ghidra users can now enjoy the same (and more!) benefits available in IDA Pro from VirusTotal’s VTGrep plugin with this open source plugin from SentinelLabs.

Security Research

Case Study: Why You Shouldn’t Trust NTDLL from Kernel Image Load Callbacks

Kasif Dekel / August 27, 2020

Read how we discovered and exploited several severe flaws in a security product’s kernel mode driver due to a lack of user mode input validation.

Kasif Dekel

Vulnerabilities in Avast And AVG Put Millions At Risk

Inside the Black Box | How We Fuzzed Microsoft Defender for IoT and Found Multiple Vulnerabilities

Pwning Microsoft Azure Defender for IoT | Multiple Flaws Allow Remote Code Execution for All

USB Over Ethernet | Multiple Vulnerabilities in AWS and Other Major Cloud Services

CVE-2021-3437 | HP OMEN Gaming Hub Privilege Escalation Bug Hits Millions of Gaming Devices

CVE-2021-21551- Hundreds Of Millions Of Dell Computers At Risk Due to Multiple BIOS Driver Privilege Escalation Flaws

CVE-2021-24092: 12 Years in Hiding – A Privilege Escalation Vulnerability in Windows Defender

Introducing SentinelOne’s Ghidra Plugin for VirusTotal

Case Study: Why You Shouldn’t Trust NTDLL from Kernel Image Load Callbacks