routing

Locating SAT based C&Cs

Published 28/10/2015 | By LNE

Recently, Kaspersky published a research about how a russian APT group use hijacked satellite links to anonymise their malware command-and-control (C&C) servers (Satellite Turla: APT Command and Control in the Sky). As they say in their blog post, I researched and published how to abuse satellite DVB-S/2 internet communications, the technique used during the Epic Turla operation. Continue reading →

Posted in Blog | Tagged Black Hat, blue team, MiTM, routing, satellite, seaairandland, Turla

This way to 10.10.10.1: Playing with labelled switching

Published 17/04/2015 | By TMB

As a pentester, there are days when you’ll get asked to look at the ordinary, and there are days that you’ll be asked to look at something more challenging. This week was full of days that met the latter criteria and not the former. Whilst I can’t share the scope, Portcullis was asked to examine a network implementation using the MPLS protocol and comment on the security, or otherwise, of it. Continue reading →

Posted in Blog | Tagged auditing, fuzzing, MPLS, networking, routing