ERNW Sectools will provide tools that will make IT environments a safer place. We are engineering our knowledge, experience and expertise into new security tools and we will ensure, that our tools will be designed and developed in a secure manner, so they won’t become a weak link in customer environments.
Get the latest news about technical topics within the IT-Security Community and a lot of special insights. Sign up now for our Newsletter at ernw.de:
In June 2020 we reported three vulnerabilities in Nagios XI 5.7.1 to the vendor. The following CVE IDs were assigned to the issues : CVE-2020-15901: Command Injection in Nagios XI web interface (RCE) CVE-2020-15902: Cross Site Scripting (XSS) CVE-2020-15903: Reserved, details will be given on vendor fix CVE-2020-15901 and CVE-2020-15902 have meanwhile been fixed in […]
Last week I attended ACM WiSec. Of course, only virtually. The first virtual conference I attended. Coincidentally, it was also the first conference I presented at. While the experience was quite different from a “real” conference, the organizers did a great job to make the experience as good as possible with, for example, a mattermost […]
I should start by telling you that this post does not contain anything fundamentally new. Hence, if you already know the tools mentioned in the title, this post may probably not be for you. However, if you are not too familiar with these tools and want to understand a little bit more on how they […]