FreeRADIUS Server Configuration Tool

Developed for the Linux operating system and written in the python programming language. The purpose of the program is to configure the FreeRADIUS server easily and quickly. To get a grasp of what FreeRADIUS is, it would help to firstly understand what the concept RADIUS stands for: RADIUS : RADI...

Critical RCE Vulnerability Found in Over a Million GPON Home Routers

Overview: We conducted a comprehensive assessment on a number of GPON home routers. Many routers today use GPON internet, and we found a way to bypass all authentication on the devices CVE-2018-10561. With this authentication bypass, we were also able to unveil another command injection...

NetScaler SD-WAN Best Practices

Purpose and Scope The intention of this article is to provide the best practices when NetScaler SD-WAN solution is designed, planned, and executed in the your network. Network Infrastructure Design and Configuration Verifying ISP Link Health For new deployments, prior to SD-WAN deployment and/or...

Cloudflare Launches Publicly DNS-Over-HTTPS Service

Cloudflare is hoping to boost consumer privacy, reduce the threat of man-in-the-middle attacks, and speed up the internet with a new free solution for securing domain name server traffic that uses the encrypted HTTPS channel. On Sunday, the security focused content delivery network provider,...

NetScaler SD-WAN DHCP Address Not Renewed After ISP Router Changed

NetScaler SD-WAN is configured with the ISP router as DHCP server. After replacing the ISP Router, NetScaler SD-WAN appliance does not renew the IP address from the new ISP router. The IP address is renewed automatically after some time, may be after few days in some cases...

Philips Intellispace Portal ISP Vulnerabilities

OVERVIEW Philips reported vulnerabilities in the Philips’ IntelliSpace Portal ISP, an advanced visualization and image analysis system. Philips is creating a software update to mitigate these vulnerabilities in the affected products. Additionally, they are issuing mitigating controls for some...

Design/Logic Flaw

Trape before 2017-11-05 has XSS via the /nr red parameter, the /nr vId parameter, the /register User-Agent HTTP header, the /register country parameter, the /register countryCode parameter, the /register cpu parameter, the /register isp parameter, the /register lat parameter, the /register lon...

Needl - Take Back Your Privacy. Lose Yourself In The Haystack.

Take back your privacy. Lose yourself in the haystack. Your ISP is most likely tracking your browsing habits and selling them to marketing agencies albeit anonymised. Or worse, making your browsing history available to law enforcement at the hint of a Subpoena. Needl will generate random Internet...

CVE-2017-8202

The CameraISP driver of some Huawei smart phones with software of versions earlier than Prague-AL00AC00B205,versions earlier than Prague-AL00BC00B205,versions earlier than Prague-AL00CC00B205,versions earlier than Prague-TL00AC01B205,versions earlier than Prague-TL10AC01B205 has a buffer overflow...

Design/Logic Flaw

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the ISP Camera driver, the contents of an arbitrary kernel address can be leaked to userspace by the function msmispgetstreamcommondata...

CVE-2017-11028

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the ISP Camera driver, the contents of an arbitrary kernel address can be leaked to userspace by the function msmispgetstreamcommondata...

CVE-2017-11028

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the ISP Camera driver, the contents of an arbitrary kernel address can be leaked to userspace by the function msmispgetstreamcommondata...

Google Android Qualcomm Component Information Disclosure Vulnerability (CNVD-2017-36259)

Android is a Linux-based open source operating system developed by Google and the Open Handheld Alliance OHA, and Qualcomm Camera is a camera program developed by Qualcomm. An information disclosure vulnerability exists in Qualcomm Camera in Android. The vulnerability can be exploited by an...

Google to add "DNS over TLS" security feature to Android OS

No doubt your Internet Service Provides ISPs, or network-level hackers cannot spy on https communications. But do you know — ISPs can still see all of your DNS requests, allowing them to know what websites you visit. Google is working on a new security feature for Android that could prevent your...

DNS Diagnostics & Performance Measurement Tools: DNSDiag

Ever been wondering if your ISP is hijacking your DNS traffic ? Ever observed any misbehavior with your DNS responses? Ever been redirected to wrong address and suspected something is wrong with your DNS? Here we have a set of tools to perform basic audits on your DNS requests and responses to ma...

CVE-2017-11000

In all Qualcomm products with Android releases from CAF using the Linux kernel, in an ISP Camera kernel driver function, an incorrect bounds check may potentially lead to an out-of-bounds write...

CVE-2017-8251

In all Qualcomm products with Android releases from CAF using the Linux kernel, in functions msmispcheckstreamcfgcmd & msmispstatsupdatecgcoverride, 'streamcfgcmd-numstreams' is not checked, and could overflow the array streamcfgcmd-streamhandle...

CVE-2017-11000

In all Qualcomm products with Android releases from CAF using the Linux kernel, in an ISP Camera kernel driver function, an incorrect bounds check may potentially lead to an out-of-bounds write...

CVE-2017-11000

CVE-2017-11000 affects Qualcomm components: specifically the Camera driver within Android CAF builds using the Linux kernel ISP Camera driver function. The root cause is an incorrect bounds check that may lead to an out-of-bounds write, described as an Elevation of Privilege (EoP) issue in the Qu...

Researchers Figure Out How to Blind ISPs from Smart Home Device Traffic

Researchers have come up with a way to blind ISPs and attackers in a man-in-the-middle position to network traffic emanating from smart home devices. Smart devices such as sleep monitors, electric switches, security cameras and many others require an internet connection to function properly. They...