During SAP assessments, Nicolas Schickert, in charge of usd SAP-Pentests, discovered so-far unknown vulnerabilities in SAP products. These so-called...
Security Research
Critical Foswiki Vulnerablities: A Logic Error Turned Remote Code Execution
Our Pentest Professionals at usd HeroLab love open source software as much as anyone. However, it should be secure as well. This is why Christian...
Security Advisories for Foswiki
The analysts at usd HeroLab examined the Foswiki application while conducting their security analyses. They identified vulnerabilities in...
Getting Ready for BlackHat 2023 and DEF CON 31
We are pleased to present "FlowMate" and "SNC Scan", two of our in-house developments, at BlackHat 2023 and DEF CON 31, two of the largest events...
Security Advisory for Tracim
The analysts at usd HeroLab examined the Tracim collaboration platform while conducting their security analyses. They identified a...
Contribution to Alliance for Cyber Security: usd AG again strengthens the network's IT security competence
Since 2020, usd AG has been engaging as a partner in the Alliance for Cyber Security (Allianz für Cyber-Sicherheit, ACS) and is this year again...
Security Advisory for Microsoft Windows
The analysts at usd HeroLab examined various operating system versions of microsoft windows while conducting their security analyses. While...
Hacker Contest summer semester 2023: Sample solution of the challenge online
In the 2023 summer semester, our "Hacker Contest" at Technical University (TU) Darmstadt and at Darmstadt University of Applied Sciences (h_da) will...
Security Advisories for Friendica
The usd HeroLab analysts examined the Friendica application while conducting their security analyses. It is an open source software to set up a...
Security Advisories for NCP Secure Enterprise Client
The usd HeroLabs analysts examined the VPN application NCP Secure Enterprise Client during their security analyses. Several high vulnerabilities and...
Security Advisories for Seafile
The usd HeroLab analysts examined the application Seafile while conducting their security analyses. The application can be used to set up a...
Security Advisories for Jellyfin
The usd HeroLab analysts examined the multimedia application Jellyfin while conducting their security analyses. Two cross-site scripting...