Blogs & Stories

SpiderLabs Blog

Attracting more than a half-million annual readers, this is the security community's go-to destination for technical breakdowns of the latest threats, critical vulnerability disclosures and cutting-edge research.

SpiderLabs Radio for the Week of April 20, 2015

In this week's episode it's all things RSA Conference. I'll be discussing two talks put on by Trustwave SpiderLabs researchers; one on PoS security and one on hacking SAP ASE databases. I'll also talk about our password cracking rig and how it stood up against attendee provided passwords.
David Byrne and Charles Henderson "That Point of Sale Is a PoS"

Martin Rakhmanov: "Owning SAP ASE: Chained Database Attack"
CVE-2014-6284 - "Probe" login access vulnerability in SAP ASE
Custom ASE "probe" account client

Or listen right from your browser with this embedded player.