Accessing root account on PLDT Home Fibr | Huawei HG8145V GPON

In this post, we will take a look at the new PLDT EchoLife HG8145V ONT and show how can we access…

Pentest engagement on client’s CCTVs and DVR VLAN.

Penetration test engagement on client’s CCTVs and DVR VLAN. BACKGROUND During pentest and red team engagement, it is quite normal…

Hacking one of the largest Toll Management Company in the Philippines

Vulnerability Assessment and Penetration Testing of a Major Toll Management Company BACKGROUND The client was looking to improve its external…

Red Team Engagement

Red Teams are hired to emulate the behaviours and techniques of real-life attackers, similar to a penetration test in many…

Hacking one of the largest oil company in the Philippines and South East Asia

Vulnerability Assessment and Penetration Testing of a Major Oil and Gas Company BACKGROUND The client was looking to improve both…

Ford Navigation Fault Hacks

Back in January of this year we had a family getaway to a remote place in Batangas where cellular signal…

Drupalgeddon 2.0

Drupal one of the most popular CMS (Content Management System) being used today by Private, Government and other sectors was recently…

Drupalgeddon2

A remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially allows attackers to exploit…

Civil Aviation Authority of the Philippines Hacked (again-again)

Last January we blogged about The Civil Aviation Authority of the Philippines (CAAP) was hacked, yet again the website of The…

Civil Aviation Authority of the Philippines Hacked (again)

The Civil Aviation Authority of the Philippines (CAAP; Filipino: Pangasiwaan ng Abyasyon Sibil ng Pilipinas) is the national aviation authority…