Home
Services
Resources
Careers
Contact

Home
Services
Resources
Careers
Contact

Resources

Research, Knowledge, and Tools

Blog Posts

OSWE Prep: Finding and Exploiting Bugs in PHP Source Code
Defeating Secure Boot with Symlink Attacks
Unpacking Bosch Surveillance Camera Firmware
Hack-A-Sat 2020 CTF
Culture – The Card That Completes Our Winning Hand
A bug and a misconfigured file share: a tale in two parts
A Strong Foundation
Capital One: Wake Up Call or Snooze Button?
Cultivating Q2
Looking inside the box

Tools

AWSTRACER

An Anvil CLI utility that will allow you to trace and replay AWS commands.

AWSSIG

Anvil Ventures' Burp extension for signing AWS requests with SigV4.

DAWGMON

Dawg the hallway monitor: monitor operating system changes and analyze introduced attack surface when installing software. See the introductory blogpost

White Papers

Finding and Exploiting Bugs in PHP Source Code

A guide that demonstrates how to prepare for a source code review, discover vulnerabilities, and exploit those vulnerabilities, which is part of the OSWE certification.

Defeating Secure Boot Protections With Symlink and Hard Link Attacks

The white paper demonstrates the use of file systems features of a non-verified partition such as symbolic links (symlinks) to defeat secure boot protection.

info@anvilventures.com

Recent Posts

OSWE Prep: Finding and Exploiting Bugs in PHP Source Code
Defeating Secure Boot with Symlink Attacks
Unpacking Bosch Surveillance Camera Firmware
Hack-A-Sat 2020 CTF
Culture – The Card That Completes Our Winning Hand

© 2020 Anvil Ventures