• 
  • 
  • 
  • 616.951.1166
VDA Labs
  • Services
    • Enterprise Security
    • Expert Training
    • Code Security Consulting
    • Hardware Assessments
  • Markets Served
  • From the Experts
  • Events
  • About
    • About VDA Labs
    • Newsletters
    • Careers
  • Contact Us
Select Page
Citrix ADC (Netscaler ADC) Multi-Factor Bypass

Citrix ADC (Netscaler ADC) Multi-Factor Bypass

Oct 26, 2020 | Misconfiguration, Pentesting, Security, Vulnerabilities

While working with a client, VDA engineers encountered an interesting circumstance that allowed for the bypassing of Multi-factor Authentication for users that had already set this up on their accounts. This particular misconfiguration/vulnerability was possible due...
BurpSuite Extensions: Some Favorites

BurpSuite Extensions: Some Favorites

May 8, 2020 | AppSec, Pentesting, Security, Tool Development

Part of our internal mentoring and training culture at VDA includes Lunch and Learn events where engineers share helpful information about a relevant security topic. This past week, several of us discussed our favorite BurpSuite extensions, which are helpful additions...
Low-Hanging Fruit Series: Permissions

Low-Hanging Fruit Series: Permissions

Nov 7, 2019 | Auditing, Endpoint Security, Enterprise Security, OSINT, Pentesting, Training

Low-Hanging Fruit Series: Permissions At VDA Labs we work with a variety of companies both large and small. During our engagements, we see many of the same reoccurring issues that allow us access to systems. To help combat these threats VDA is starting a blog series...
Low-Hanging Fruit Series: Multi-factor Authentication (MFA)

Low-Hanging Fruit Series: Multi-factor Authentication (MFA)

Oct 31, 2019 | Enterprise Security, Pentesting, Phishing, Security, Social Engineering, Training

Low-Hanging Fruit Series: Multi-factor Authentication (MFA) At VDA Labs we work with a variety of companies both large and small. During our engagements, we see many of the same reoccurring issues that allow us access to systems. To help combat these threats VDA Labs...
Phishing Users using Evilginx and Bypassing 2FA

Phishing Users using Evilginx and Bypassing 2FA

Oct 1, 2019 | Pentesting, Phishing, Social Engineering, Training

Phishing Users using Evilginx and Bypassing 2FA Phishing is one of the largest ways that organizations are being compromised in 2019. The common recommendation is that all users should have two factor authentication (2FA) enabled on their accounts to help combat the...
Windows Credential Theft: RDP & Internet Explorer 11

Windows Credential Theft: RDP & Internet Explorer 11

Sep 25, 2019 | Enterprise Security, Exploit Development, Pentesting, Vulnerabilities

Objective In an effort to help make us all more secure, VDA decided to release a pentest technique, that we discovered a while ago.  We notified Microsoft many months ago of this technique, and they have been a great partner as always, in quickly working to mitigate...
« Older Entries

Recent Posts

  • Citrix ADC (Netscaler ADC) Multi-Factor Bypass
  • Creating Mayhem: Crashing MP3gain for Fun and CVEs
  • All of Your Data are Belong To Us: The Art of Imaging and Analysis

Archives

Categories

Home Markets Served From the Experts Events About Contact

Copyright © VDA Labs. All Rights Reserved • Privacy Policy • Site by Kreativ Logo

  • Follow
  • Follow
  • Follow