Calif: Redash SAML Authentication Bypass
Calif
130 posts
Calif
@calif_io
- Reproducing CVE-2023-38646: Metabase Pre-auth RCE blog.calif.io/p/reproducing-… CC @peterjson @testanull
- Calif Inc: Privilege escalation in AWS Elastic Kubernetes Service
- In a recent engagement, we encountered a target running CraftCMS, and discovered a Remote Code Execution vulnerability that allowed us to compromise the target. blog.calif.io/p/craftcms-rce CC @yeuchimse
- We analyzed a LockBit v3 variant, and rediscovered a bug that allows us to decrypt some data without paying the ransom. We also found a design flaw that may cause permanent data loss. This is a joint work with @cPeterr. Enjoy!
- Microsoft Exchange 2010 Arbitrary User Impersonation
- After we published a PoC for CVE-2023-38646, Metabase contacted us asking for the full payload. Today they confirmed that we actually found a new vulnerability:Oops! So we accidently dropped a 0day github.com/metabase/metab…
- RED ALERT: Calif hackers are en route to the US. Keep tight of your money, bitcoins, or AI model weights!
- New blog post: in a recent engagement, we turned a simple XSRF in Argo CD to a shell with cluster admin privileges. No fix is available. We recommend hosting Argo CD on an isolated domain. Details:
- Type confusion attacks in ProseMirror editors
- Pretty cool testimonial from @AnthropicAI. If you're into hacking AI models, we're hiring! docs.google.com/document/d/1SJ…
- Our founder went to the White House meeting the National Security Council to discuss cybersecurity for Vietnam. Report:
