State of SonicWall Exposure: Firmware Decryption Unlocks…
Discover Bishop Fox's survey on the current state of SonicWall appliances on the public internet.
The iSOON Disclosure: Exploring the Integrated Operations Platform
Bishop Fox examines the iSoon data disclosure from an offensive security perspective and an analysis of the platform's capabilities, design, features.
CVE-2024-21762 Vulnerability Scanner for FortiGate…
Discover vulnerable FortiGate firewalls with the Bishop Fox CVE-2024-21762 vulnerability scanner. Learn more here!
Building an Exploit for FortiGate Vulnerability…
Learn how Bishop Fox built a POC exploit for the pre-authentication remote code injection vulnerability in the Fortinet SSL VPN published by Lexfo.
CVE-2023-27997 is Exploitable, and 69% of FortiGate…
Bishop Fox internally developed an exploit for CVE-2023-27997, a heap overflow in FortiOS—the OS behind FortiGate firewalls—that allows remote code execution. There are 490,000 affected SSL VPN interfaces exposed on the internet, and roughly 69% of them are currently unpatched. You should patch yours now
Advisory: Atlassian Jira Align Application, Version… | Bishop Fox
Bishop Fox covers server-side request forgery (SSRF) and insufficient authorization controls vulnerabilities in Atlassian Jira Align, Version 10.107.4.
Advisory: Atlassian Jira Align Application, Version… | Bishop Fox
Bishop Fox covers server-side request forgery (SSRF) and insufficient authorization controls vulnerabilities in Atlassian Jira Align, Version 10.107.4.