Skip to content

CyberIQs – Home
Blog
About Us
Contact Us

The Not So Pleasant Password Manager

admin
September 19, 2023

Go to Home » cyber

Overview

During a recent adversary simulation, the MDSec ActiveBreach red team were asked to investigate the organisation's Password Manager solution, with the key objective of compromising stored credentials, ideally from an unauthenticated perspective.

As part of this engagement, Sean Doherty & Juan Manuel Fernandez carried out a detailed analysis of the Password Manager solution (Pleasant Password Server). Resulting in the

Read more

Tags: ActiveBreach, red, credentials, penetration-testing, Password, red-team, adversary, server, MDSec, Adversary Simulation, Analysis, Perspective, Simulation, password manager

Related Posts

CVE-2023-26258 – Remote Code Execution in ArcServe UDP Backupa
Leveraging VSCode Extensions for Initial Accessa
Attack like a Red Team (not using Devops)— ep.1 : How Red Team worksa
What is a ‘purple team’ in cyber security? (2023)a
Unlocking the power of Red Teaming: An overview of trainings and certificationsa

AI News

OpenAI Wins Again

September 22, 2023 6:30 am

Cutting Edge Tricks of Applying Large Language Models

September 22, 2023 6:23 am

ServiceNow Releases Now Assist, an AI Suite for Enterprises

September 22, 2023 6:09 am

Cyber News

NIS2 – Cyber Defence is a Must, not only for KRITIS

September 22, 2023 8:01 am

Data Security in traditional Data Centre vs Cloud Environments

September 22, 2023 6:46 am

Cisco acquires Splunk for $28 billion

September 22, 2023 6:39 am

Blog

Hitrust Certification

May 2, 2023 8:14 am

What is the best cloud security certification, CCSP, CCSK or CCAK?

April 21, 2023 9:23 pm

The Top 3 Countries With The Best Cyber Warfare Capabilities

April 2, 2023 2:47 pm

Find us on social media

Facebook Twitter Linkedin Reddit

© 2023 CyberIQs | All rights reserved.

News
About Us
Contact Us
Cookie Policy
Disclaimer
Privacy Statement

Follow Us

Facebook Twitter Linkedin

Manage Cookie Consent

We use cookies to optimize our website and our service.

Functional Functional Always active

The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.

Preferences Preferences

The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.

Statistics Statistics

The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.

Marketing Marketing

The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.

Manage options Manage services Manage vendors Read more about these purposes

View preferences

{title} {title} {title}