Archive - InfoGuard Labs

Advisories

CVE-2026-0539: Local Privilege Escalation in pcvisit Remote Software

CVE-2026-3991: Local Privilege Escalation in Symantec DLP Agent

CVE-2025-13176: Local Privilege Escalation in ESET Inspect EDR

CVE-2025-51682, CVE-2025-51683: Time Management Software SQLi-RCE

CVE-2025-10363: Unauthenticated RCE in Swiss Finance Software Topal

CVE-2025-47188: Mitel Phone Unauthenticated RCE

CVE-2019-10123: Logistics Sofware SQLi-RCE

Blog Posts

2026

4 posts

BravoX - The new Kids on the Block

#BravoX #Ransomware #Threat Intelligence

Slithering Through the Noise - Deep Dive into the VIPERTUNNEL Python Backdoor

#VIPERTUNNEL #ShadowCoil #Threat Intelligence

Decrypting and Abusing Predefined BIOCs in Palo Alto Cortex XDR

#EDR #RedTeaming

Abusing Cortex XDR Live Terminal as a C2

#RedTeaming #EDR

2025

9 posts

CLRaptor: Hunting reflected assemblies with Velociraptor

#Threat Hunting #DFIR #Velociraptor

Analyzing and Breaking Defender for Endpoint's Cloud Communication

#VulnResearch #EDR

Automation of VHDX Investigations

#Velociraptor #DFIR #Forensics

Attacking EDRs Part 4: Fuzzing Defender's Scanning and Emulation Engine (mpengine.dll)

#VulnResearch #EDR

Attacking EDRs Part 3: One Bug to Stop them all

#VulnResearch #RedTeaming #EDR #ALPC

Attacking EDRs Part 2: Driver Analysis Results

#VulnResearch #RedTeaming #EDR #Fuzzing

Attacking EDRs Part 1: Intro & Security Analysis of EDR Drivers

#VulnResearch #RedTeaming #EDR

Tear Down The Castle - Part 2

Tear Down The Castle - Part 1

2023

1 posts

Breaking CAPTCHAs with image recognition