When I stood up a Palo Alto firewall to do research for my blog post on The Dangers of Client Probing on Palo Alto Firewalls, I also found something interesting in the UI. Under Device -> Certificate Management -> SSL Decryption Exclusion there was a list of domains that by default were exempt from SSL…
n00py Blog- Popping shells on Splunk
- Dark Tip: Avoiding SSL Inspection on Palo Alto Firewalls
- The Dangers of Client Probing on Palo Alto Firewalls
- Bypassing Duo Two-Factor Authentication (Fail Open)
- Executing Meterpreter in Memory on Windows 10 and Bypassing AntiVirus (Part 2)
- Executing Meterpreter in Memory on Windows 10 and Bypassing AntiVirus
- Ducky-in-the-middle: Injecting keystrokes into plaintext protocols
- Microsoft Word upload to Stored XSS
- Exploiting complex XSS payloads in a constrained parameter
- Bsides Puerto Rico 2017-2018 Presentation