AmberWolf
@amberwolfsec.bsky.social
Offensive Cyber, Risk Management & Governance, Vulnerability Research and Technical Due Diligence
Read our full analysis of the vulnerability and its potential exploitation here: blog.amberwolf.com/blog/2025/ju...
ThinOS - Unencrypted Memory Dumps (CVE-2025-32752)
AmberWolf Security Research Blog
blog.amberwolf.com
June 4, 2025 at 10:59 AM
Read our full analysis of the vulnerability and its potential exploitation here: blog.amberwolf.com/blog/2025/ju...
These core dumps may contain sensitive data and compromise the integrity of ThinOS’s storage encryption, directly contradicting Dell’s documentation, which states that all partitions except the boot partition are encrypted.
June 4, 2025 at 10:59 AM
These core dumps may contain sensitive data and compromise the integrity of ThinOS’s storage encryption, directly contradicting Dell’s documentation, which states that all partitions except the boot partition are encrypted.
If the device configuration allows it, this option can be accessed by unauthenticated users. In addition, previously generated core dumps may be accessible to unauthenticated attackers.
June 4, 2025 at 10:59 AM
If the device configuration allows it, this option can be accessed by unauthenticated users. In addition, previously generated core dumps may be accessible to unauthenticated attackers.
You can read our latest blog at blog.amberwolf.com/blog/2025/ja...
Reproducing CVE-2024-9042: Command Injection in Windows Kubernetes Nodes
AmberWolf Security Research Blog
blog.amberwolf.com
January 17, 2025 at 3:41 PM
You can read our latest blog at blog.amberwolf.com/blog/2025/ja...
CVE-2024-5921 is a Remote Code Execution and Privilege Escalation vulnerability in Palo Alto Global Protect, which is also exploitable using NachoVPN. Our full technical write up is available here: blog.amberwolf.com/blog/2024/no...
Palo Alto GlobalProtect - RCE and Privilege Escalation via Malicious VPN Server (CVE-2024-5921)
Palo Alto GlobalProtect - RCE and Privilege Escalation via Malicious VPN Server (CVE-2024-5921)
blog.amberwolf.com
November 26, 2024 at 11:17 AM
CVE-2024-5921 is a Remote Code Execution and Privilege Escalation vulnerability in Palo Alto Global Protect, which is also exploitable using NachoVPN. Our full technical write up is available here: blog.amberwolf.com/blog/2024/no...
CVE-2024-29014 is an RCE as SYSTEM vulnerability in SonicWall NetExtender that is exploitable using NachoVPN. Full technical details of the vulnerability are available in out blog: blog.amberwolf.com/blog/2024/no...
SonicWall NetExtender for Windows - RCE as SYSTEM via EPC Client Update (CVE-2024-29014)
SonicWall NetExtender for Windows - RCE as SYSTEM via EPC Client Update (CVE-2024-29014)
blog.amberwolf.com
November 26, 2024 at 11:17 AM
CVE-2024-29014 is an RCE as SYSTEM vulnerability in SonicWall NetExtender that is exploitable using NachoVPN. Full technical details of the vulnerability are available in out blog: blog.amberwolf.com/blog/2024/no...
You can get the code, the prebuilt container or contribute modules on GitHub: github.com/AmberWolfCyb...
GitHub - AmberWolfCyber/NachoVPN: A tasty, but malicious SSL-VPN server 🌮
A tasty, but malicious SSL-VPN server 🌮. Contribute to AmberWolfCyber/NachoVPN development by creating an account on GitHub.
github.com
November 26, 2024 at 11:17 AM
You can get the code, the prebuilt container or contribute modules on GitHub: github.com/AmberWolfCyb...
NachoVPN is a modular server that allows for the automatic exploitation of VPN clients when they connect. It currently supports Cisco AnyConnect, SonicWall NetExtender, Palo Alto GlobalProtect and Pulse/Ivanti Connect Secure) across a multiple platforms. blog.amberwolf.com/blog/2024/no...
Introducing NachoVPN: One VPN Server to Pwn Them All
AmberWolf Security Research Blog
blog.amberwolf.com
November 26, 2024 at 11:17 AM
NachoVPN is a modular server that allows for the automatic exploitation of VPN clients when they connect. It currently supports Cisco AnyConnect, SonicWall NetExtender, Palo Alto GlobalProtect and Pulse/Ivanti Connect Secure) across a multiple platforms. blog.amberwolf.com/blog/2024/no...