Henrik Falk April 10, 2025
The SQL Server Crypto Detour
A SQL Server database backup for a ManageEngine’s ADSelfService Plus product had been recovered and, while the team had walked through the database recovery, SQL Server database encryption was in use. With a ticking clock, the request was clear… can we do anything to recover sensitive information from the database with only a .bak file available?
posts.specterops.io/the-sql-server-crypto-detour-5ff9ac7033de
Hunting street-level cell phone surveillance with Rayhunter
It feels like now is a great time to protect our communities by doing some countersurveillance of our own. So I was excited to read about EFF's new open source tool for detecting cellular spying called Rayhunter. Rayhunter is firmware that can be installed on a cheap WiFi hotspot that can detect cell-site simulators - also called IMSI catchers or Stingrays. I bought a hotspot of my own to install Rayhunter on. Here's my experience with setting it up, and how you can detect these attacks yourself.
micahflee.com/hunting-street-level-cell-phone-surveillance-with-rayhunter
Bypass WDAC WinDbg Preview
A little while ago I came across a particularly difficult environment with strong Windows Defender Application Control (WDAC) policies configured and no way of gaining code execution to launch my implant… or was there?
cerbersec.com/2025/04/07/bypass-wdac-windbg-preview.html
