NCC Group Research Blog
McAfee Email and Web Security Appliance v5.6 – Active session tokens of other users are disclosed within the UI
4 months 2 weeks ago
McAfee Email and Web Security Appliance v5.6 – Any logged-in user can bypass controls to reset passwords of other administrators
4 months 2 weeks ago
McAfee Email and Web Security Appliance Reflective XSS allowing an attacker to gain session tokens
4 months 2 weeks ago
McAfee Email and Web Security Appliance Session hijacking and bypassing client-side session timeouts
4 months 2 weeks ago
McAfee Email and Web Security Appliance Arbitrary file download is possible with a crafted URL, when logged in as any user
4 months 2 weeks ago
McAfee Email and Web Security Appliance Password hashes can be recovered from a system backup and easily cracked
4 months 2 weeks ago
McAfee Email and Web Security Appliance Any logged-in user can bypass controls to reset passwords of other administrators
4 months 2 weeks ago
Mature Security Testing Framework
4 months 2 weeks ago
McAfee Email and Web Security Appliance Active session tokens of other users are disclosed within the UI
4 months 2 weeks ago
Maritime Cyber Security: Threats and Opportunities
4 months 2 weeks ago
Matty McMattface: Security implications, mitigations & testing strategies for biometric facial recognition systems
4 months 2 weeks ago
Managing Cyber Risk in the Supply Chain
4 months 2 weeks ago
Managing PowerShell in a modern corporate environment
4 months 2 weeks ago
Manifest Explorer
4 months 2 weeks ago
Mallory and Me: Setting up a Mobile Mallory Gateway
4 months 2 weeks ago
Mallory: Transparent TCP and UDP Proxy
4 months 2 weeks ago
Man-in-the-Middling Non-Proxy Aware Wi-Fi Devices with a Pineapple
4 months 2 weeks ago
Machine learning from idea to reality: a PowerShell case study
4 months 2 weeks ago
Making New Connections – Leveraging Cisco AnyConnect Client to Drop and Run Payloads
4 months 2 weeks ago
Checked
4 hours 55 minutes ago