Aaron’s Blog.

Latest from the Blog

The Latest.

Undetected Brute force attacks in Microsoft Azure AD.

Hello World! Recently Security Researchers have released a PoC (proof-of-concept) exploit that allows for username enumeration and password brute-forcing on vulnerable Microsoft Azure servers, more specifically Azure active directory. Is is able to do this by taking advantage of weaknesses that lie within the Autologon mechanism. Let’s do a quick breakdown on some of these…

Keep reading

Another Google Chrome patch…

Hello World! So for those who aren’t aware what exactly a 0-day is, let me give you the briefest definition I can form… Essentially a bug that has just been found (or also used to refer to something that hasn’t been found… yet.) Well a new one was just fixed and Google released an update…

Keep reading

Loading…

Something went wrong. Please refresh the page and/or try again.