Pentest Chronicles

If you’re interested in the world of cybersecurity, the related technical issues, and what’s challenging right now, you’re in the right place! This part talks about IT security more broadly and has the latest information, tips, and advice.

Latest insight

Credentials exposure in tinycontrol devices

Paweł Różański

23 March, 2026

It seemed to be a usual LAN test, but the network contained some non-typical devices. One of them was an IoT device (LAN controller), which looked interesting. It had separate admin and user accounts. The user had only read-only permissions, but a default password. The password for the admin was changed from the default one. We decided to check if there is a possibility to perform command injection or read sensitive files. Instead, I found something more interesting: during the opening of the login page by an unauthorized user, the file login.json was fetched from the device.

READ article

Other articles

How Private Cache Can Lead to Mass Account Takeover – pentest case

MATEUSZ KOWALCZYK

12 July, 2023

In many situations, minor vulnerabilities might seem like small fish in the vast ocean of cybersecurity threats. They're often marked as low severity and thus, overlooked by developers who assume that the conditions for their exploitation are too complicated to be met. However, in this article, we're going to challenge that assumption and show you how chaining several 'minor' vulnerabilities can lead to a Mass Account Takeover.

READ article

XSS in WordPress via open embed auto discovery

JAKUB ŻOCZEK

29 May, 2023

Users often assume that known software is free of security flaws because it has been checked by a sufficient number of tools and security testers. However, this is not an assumption that a pentester or bug hunter can afford to make. Vulnerabilities may lurk in various places, and finding an interesting bug often requires patient searching.

READ article

Is running legacy software with no publicly known exploits safe?

Krzysztof Bierówka

15 May, 2023

There is a lot of legacy software running all over the network. This is an excellent example of technological debt. And the debt means that we are borrowing. We borrow time before compromise.

READ article

How to access data secured with BitLocker? Do a system update

Krzysztof Bierówka

12 January, 2023

Do you suffer from eternal lack of time for system updates? Finally managed to find a moment to install them, but you didn't finish the whole process because you had to run out of the office? Is your data safe? Read this article to find out. As always in the IT world, it is difficult to find a good and refined standard. Linux has LUKS, Apple uses FileVault and Windows has BitLocker.

READ article

SOCMINT – or rather OSINT of social media

Tomasz Turba

28 October, 2022

SOCMINT is the process of gathering and analyzing the information collected from various social networks, channels and communication groups in order to track down an object, gather as much partial data as possible, and potentially to understand its operation. All this in order to analyze the collected information and to achieve that goal by making …

READ article

PyScript – or rather Python in your browser + what can be done with it?

JAKUB ŻOCZEK

10 September, 2022

A few days ago, the Anaconda project announced the PyScript framework, which allows Python code to be executed directly in the browser. Additionally, it also covers its integration with HTML and JS code.

READ article

Windows security: reconnaissance of Active Directory environment with BloodHound - part 2.

DAWID FARBANIEC

19 August, 2022

Collecting information about the domain environment with SharpHound A program that collects domain environment data – SharpHound is a component of the BloodHound tool. The collection of environmental data starts when SharpHound.exe is run on one of the computers. ...

READ article

Windows security: reconnaissance of Active Directory environment with BloodHound - part 1.

DAWID FARBANIEC

02 July, 2022

Windows security: reconnaissance of Active Directory environment with BloodHound. In this article we will take a closer look at the BloodHound tool – Six Degrees of Domain Admin. The application was developed in JavaScript and built using the Electron platform. The graphical visualization uses the Neo4j database. During the experiment, we will use a Windows …

READ article

When Usernames Become Passwords: A Real-World Case Study of Weak Password Practices

michał wnękowicz

09 June, 2022

In today's world, ensuring the security of our accounts is more crucial than ever. Just as keys protect the doors to our homes, passwords serve as the first line of defense for our data and assets. It's easy to assume that technical individuals, such as developers and IT professionals, always use strong, unique passwords to keep their accounts secure. However, this is not always the case; for example, ...

READ article

Featured articles

Two new CVEs: FooGallery's WordPress plugin

Robert Kruczek

05 July 2024

During some happy hunting, I found two XSS vulnerabilities in the FooGallery WordPress plugin (version 2.4.14), which made 50k instances vulnerable on the day of discovery! These can allow attackers to execute malicious code and gain unauthorized access to administrative functionalities. Below is a detailed explanation of these vulnerabilities and how they can be exploited.

READ article

XSS in WordPress via open embed auto discovery

JAKUB ŻOCZEK

29 May 2023

READ article

A professional cybersecurity consultant ready to assist with your inquiry.

Any questions?