ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

en

English
日本語
Deutsch
Español
Français
Italiano
Dutch
한국어

Back

ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

Security Research

CVE-2021-45608 | NetUSB RCE Flaw in Millions of End User Routers

Max Van Amerongen / January 11, 2022

SentinelLabs has discovered a high severity flaw in NetUSB which could be remotely exploited to execute code in the kernel.

PDF

Security Research

USB Over Ethernet | Multiple Vulnerabilities in AWS and Other Major Cloud Services

Kasif Dekel / December 7, 2021

25 CVEs and counting: SentinelLabs' latest research reveals millions of cloud users are exposed to privilege escalations from bugs in shared driver software.

PDF

Security Research

GSOh No! Hunting for Vulnerabilities in VirtualBox Network Offloads

Max Van Amerongen / November 23, 2021

Inspired by Pwn2Own, SentinelLabs' researcher Max Van Amerongen discovered three CVEs, including two privilege escalations, in VirtualBox. Read more here.

PDF

Security Research

Infect If Needed | A Deeper Dive Into Targeted Backdoor macOS.Macma

Phil Stokes / November 15, 2021

SentinelLabs reveals further IoCs, behavior and analysis around suspected APT attack targeting macOS users and Hong Kong pro-democracy activists.

PDF

Security Research

CVE-2021-43267: Remote Linux Kernel Heap Overflow | TIPC Module Allows Arbitrary Code Execution

Max Van Amerongen / November 4, 2021

SentinelLabs has discovered a heap overflow vulnerability in the TIPC module of the Linux Kernel, which can allow attackers to compromise an entire system.

PDF

Security Research

AlphaGolang | A Step-by-Step Go Malware Reversing Methodology for IDA Pro

Juan Andrés Guerrero-Saade / October 21, 2021

SentinelLabs sets off to dispel the myth that Go malware is hard to reverse engineer. This suite of IDApython scripts will set you well on your way

PDF

Security Research

Techniques for String Decryption in macOS Malware with Radare2

Phil Stokes / October 12, 2021

In Part 3 of our macOS reversing series, we look at three different macOS malware samples and walk you through how to decipher encrypted strings.

PDF

Security Research

Defeating macOS Malware Anti-Analysis Tricks with Radare2

Phil Stokes / September 20, 2021

Learn how to beat malware authors' control flow and avoid executing unwanted parts of their code to analyze macOS malware in radare2.

PDF

Security Research

CVE-2021-3437 | HP OMEN Gaming Hub Privilege Escalation Bug Hits Millions of Gaming Devices

Kasif Dekel / September 14, 2021

A high severity flaw in HP's OMEN Gaming Hub software allows any user to escalate privileges to kernel-level mode.

PDF

Security Research

6 Pro Tricks for Rapid macOS Malware Triage with Radare2

Phil Stokes / August 30, 2021

Learn more about reversing real-world macOS malware in this new series for intermediate to advanced analysts, starting with these r2 tips!

PDF

Search ...

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Labs Categories

Crimeware
Security Research
Adversary
Advanced Persistent Threat
Security & Intelligence
LABScon

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Latest Tweet

RT @SentinelOne: In @CyberScoopNews: "A years-long Chinese-aligned cyberespionage operation has been actively updating its abilities usin…3 days ago
RT @MigoKed: New #SentinelLabs discovery: "Tainted Love" APT targets Middle East telecoms, by @milenkowski @juanandres_gs @joeychen Fun fa…4 days ago
New Research -- "Tainted Love" APT Operation ✴️Targeting Middle East telecom. ✴️ Likely connected to a Chinese gro… https://t.co/GYsgcwydTr4 days ago
Great report from our friends at @redcanary https://t.co/8xjdslejlI5 days ago

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

Category

Security Research

CVE-2021-45608 | NetUSB RCE Flaw in Millions of End User Routers

USB Over Ethernet | Multiple Vulnerabilities in AWS and Other Major Cloud Services

GSOh No! Hunting for Vulnerabilities in VirtualBox Network Offloads

Infect If Needed | A Deeper Dive Into Targeted Backdoor macOS.Macma

CVE-2021-43267: Remote Linux Kernel Heap Overflow | TIPC Module Allows Arbitrary Code Execution

AlphaGolang | A Step-by-Step Go Malware Reversing Methodology for IDA Pro

Techniques for String Decryption in macOS Malware with Radare2

Defeating macOS Malware Anti-Analysis Tricks with Radare2

CVE-2021-3437 | HP OMEN Gaming Hub Privilege Escalation Bug Hits Millions of Gaming Devices

6 Pro Tricks for Rapid macOS Malware Triage with Radare2