Rhino Security Labs

Strategic & Technical Blog

CompleteFTP Server Local Privilege Escalation
CVE-2019-16116

Robert Fisher
October 1, 2019

CompleteFTP is a suite of FTP and SSH tools for Windows developed by EnterpriseDT. The server has functionality for remote and local administration which, due to information leakage in a log file, can be abused by an attacker to hijack the…

Abusing VPC Traffic Mirroring in AWS

Exploiting AWS ECR and ECS with
the Cloud Container Attack Tool (CCAT)

Bypassing IP Based Blocking with AWS API Gateway

David Yesland

In external and red team engagements, we often come across different forms of IP based blocking. This prevents things like password brute forcing, password spraying, API rate limiting, and other forms of IP blocking like web application…