The preface of the disclosure of CVE-2018-16225 (https://blog.francescoservida.ch/2018/09/16/cve-2018-16225-public-disclosure-qbee-camera-vulnerability/) contained a little lie: I did not find one vulnerability during the research for my master thesis, but four, three of which were still being patched by the vendor/under the 90 days disclosure timeframe given to the vendor. Leggi tutto “[CVE-2018-16222 to 16225] Multiple Vulnerabilities in QBee and iSmartAlarm Products”
[CVE-2018-16225] Public Disclosure – QBee Camera Vulnerability
During the research for my master thesis on IoT forensics: “Internet of Things: Traces, Vulnerabilities and Forensic Challenges” (more about it in the future), I found one vulnerability in the QBee Multisensor Camera (https://qbeecam.com/).
Leggi tutto “[CVE-2018-16225] Public Disclosure – QBee Camera Vulnerability”
Homelabbing with Hyper-V (Part 1) – HandsOn
It’s been a while since i started playing with Hyper-V and even more since I was introduced to the virtualization world.
I started around 8 years back when i wanted to give a second try to the Linux world but without risking destroying the main partition of a production laptop while installing the system (To my past self: Use the whole disk means “The WHOLE disk”). Thanks to VirtualBox I managed to get Linux installed and get immersed in that new world. Since then i installed, reinstalled, rereinstalled etc… plenty of different distros, from Ubuntu to Kali to the forensics oriented CAINE Leggi tutto “Homelabbing with Hyper-V (Part 1) – HandsOn”
Apertura Alptransit – Un problema per gli studenti ticinesi… ma anche no.
Ho letto oggi il comunicato del SISA sul cambiamento degli orari dei treni in vigore dall’11.12.’16, in seguito all’apertura di alptransit.
Ho quindi scritto direttamente al SISA chiedendo chiarimenti, e riporto qui di seguito le riflessioni fatte nella mail a loro indirizzata.
Leggi tutto “Apertura Alptransit – Un problema per gli studenti ticinesi… ma anche no.”