The goal of this introduction is to present some basic information about the Cisco ASA and to acknowledge the past research in this area that we found invaluable. To relay this information, we will be releasing a series of blogs describing a variety of topics, with this being the introductory article. We are hoping this information and code will encourage others to investigate and research Cisco ASA devices. We decided to share some of our research and the associated tools. Many of these tools help speed up investigations of problems/bugs, debugging vulnerabilities and exploit states, and the general poking around of Cisco devices for research. We took the time to write some tools to more effectively analyse or debug certain aspects of the exploits and automate a lot of the tasks we found repetitive. Part of this research has involved data mining numerous Cisco ASA firmware files to generate new exploit targets. We’ve spent a bunch of time investigating Cisco ASA devices and their firmware while looking into exploiting CVE-2016-1287, CVE-2016-6366, and other bugs.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |