LabNews
Security Advisory 02/2020
usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the product Nagios NRPE v.3.2.1. The...
Unknown Vulnerabilities – Responsibilities of the Finder
The security analysts of usd HeroLab frequently discover previously unknown security vulnerabilities in products as part of their daily work. For these zero-day...
Pentest – What analysis approaches are there?
Attackers gaining unauthorized access to IT systems and applications has severe consequences for companies. Pentests identify possible gateways hackers could exploit and show...
Security Advisory 01/2020
usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products Dolibarr ERP/CRM and Codiad...
“Made by usd HeroLab” – Sebastian Puttkammer about Tools, Quality and Efficiency
Driven by the motivation to simplify the work for all team members, a team under the leadership of Sebastian Puttkammer, Managing Consultant at usd HeroLab, developed tools “made...
Tool for Forensic Data Analysis at DFRWS USA 2019
Christian Meng, usd HeroLab Consultant, developed an open source tool for forensic data analysis and recovery of deleted SQLite data sets, “bring2lite” as part of his final...
36c3 – usd HeroLab at Chaos Communication Congress 2019
A well-established tradition for the usd HeroLab and a great end to the year: from December 27 to 30, 2019, more than 20 HeroLabbers attended the four-day 36th Chaos...
Top 7 Quality Criteria for a Pentest Partner
In the era of digitalization, the question of whether systems and applications are effectively protected from attackers is business critical for many companies. The right choice...
What If a Gateway for Hackers Was Hidden in Your Source Code?
Code Review – the Supreme Discipline of Security Analyses Businesses today invest a lot in a wide range of security measures to protect their infrastructures from attacks. These...
Security Advisory 10/2019
Vulnerability Disclosure usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products...
usd HeroLab „Summerschool 2019“ completed
In addition to university courses, the usd HeroLab training program „Become a HeroLab Professional“, or “Become a HeroLabber” for short, is another investment in qualified young...
usd HeroLab Team Workshop Breaks Participant Record
Around 60 colleagues of usd HeroLab attended the latest two-day team workshop at CST Academy. In addition to expert presentations on various topics, such as special penetration...
Cyber Security Transformation Chef
usd Herolab proudly presents the Cyber Security Transformation Chef (shorthand CSTC), which is a Burp Extension for various input transformations. It implements a generic way to...
Security Advisory 07/2019
by Stefan Schmer, Managing Consultant Security Analysis & Pentests, usd AG. Vulnerability Disclosure usd AG penetration testers have identified several security...
Getting ready for DEF CON 27
We are excited to present one of our in-house developments at DEF CON 27 – the CST Chef. Our Heroes and developers Sebastian Puttkammer and Ralf Almon, Managing Consultants at...
usd HeroLab at DEF CON 2019
Cyber Security Transformation Chef (CSTC) Convinced Jury As one of the largest international IT security conferences worldwide, DEF CON once again brings together the world’s...
usd Hackers’ Days 2019 – The Challenge Is Now Live!
The usd Hackers’ Days Challenge 2019 has just been unlocked for you. Now it’s time to hack the page and crack the codes! You have time until May 5th! Only those who are...
usd HeroLab to Again Teach Course at TU Darmstadt and h_da
Hacker Contest Summer Semester 2019 The usd HeroLab will once again teach the course “Hacker Contest” at the Technical University (TU) Darmstadt and the University of Applied...
usd HeroLab “Winterschool 2019” Launches
“Become a HeroLab Professional” program for working students of the usd HeroLab In mid-march two classe of working students of the “Winterschool” will start the five-day training...
Security Advisory 01/2019
by Stefan Schmer, Managing Consultant Security Analysis & Pentests, usd AG. Vulnerability Disclosure usd AG penetration testers have identified several security...