With Great Research Comes Great Responsibility.
Welcome to our research and development platform: F-Secure Labs. Here we dissect industry news and trends, publish research, and share our tools with the security community.
Latest Tools
Metasploit Modules for RCE in Apache NiFi and Kong API Gateway
Two exploit modules for the
awspx
auspex [ˈau̯s.pɛks] noun: An augur of ancient Rome, especially one who interpreted omens derived from the observation of birds.C3
Attackers must establish command and control (C2) to gain influence within their target environments in order to pursue their goals and objectives.Jamfing for Joy: Attacking macOS in Enterprise
On 13th March 2020, Calum Hall and Luke Roberts gave a talk titled "An Attacker’s Perspective on Jamf Configurations" at the 3rd edition of Objective By The Sea, held on the beautiful island of Maui, Hawaii.
This blog post is designed to complement the conference talk, and can be used as a reference when performing attacks against organisations utilising Jamf. We’ve even added in a few extra bits that we weren’t able to fit into the talk too!
This post marks the release of the Jamf Attack Toolkit
Read more