+49 241 510081-0
kontakt@redteam-pentesting.de
DE
DE

Contact

Contact us

+49 241 510081-0
kontakt@redteam-pentesting.de
Contact form
RedTeam Pentesting HeaderRedTeam Pentesting HeaderRedTeam Pentesting HeaderRedTeam Pentesting HeaderRedTeam Pentesting HeaderRedTeam Pentesting HeaderRedTeam Pentesting HeaderRedTeam Pentesting Header

Other Publications

29/02/2012 - “Theoretische und praktische Risiken der Verwendung von URL-Verkürzungsdiensten”Slides19. DFN-Workshop „Sicherheit in vernetzten Systemen”

Slides and paper for the talk “Theoretische und praktische Risiken der Verwendung von URL-Verkürzungsdiensten”, given on Februar 22nd, 2012 at the 19. DFN-Workshop “Sicherheit in vernetzten Systemen”.

15/06/2010 - JBoss Security

Information page about JBoss security with new whitepaper “JBoss AS – Deploying WARs with the DeploymentFileRepository MBean”.

30/04/2010 - “Bridging the Gap between the Enterprise and You – or – Who's the JBoss now”

Video of the talk “Bridging the Gap between the Enterprise and You – or – Who’s the JBoss now”, held at the Bachelor-Vertiefungspraktikum zur Hackertechnik of the Chair for Network and Data Security, Ruhr-Universität Bochum.

21/12/2009 - TLS Renegotiation Vulnerability: Proof of Concept Code

RedTeam Pentesting has developed proof of concept code to exploit the vulnerability in the TLS protocol that was published in the beginning of November 2009.

30/11/2009 - “Bridging the Gap between the Enterprise and You – or – Who's the JBoss now?”

Whitepaper for the talks “Bridging the Gap between the Enterprise and You – or – Who’s the JBoss now”, held at hack.lu 2008, the 16th DFN-CERT Workshop and at RWTH Aachen University. The Whitepaper contains detailed descriptions of the attacks presented in the talks.

23/11/2009 - “Man-in-the-Middle Attacks against the chipTAN comfort Online Banking System”

ChipTAN comfort is a new system that uses a trusted device to securely authorise transactions in online banking. RedTeam Pentesting has examined chipTAN comfort and was able to discover some vulnerabilities in this new system.

03/06/2009 - “Bridging the Gap between the Enterprise and You – or – Who's the JBoss now?”

Whitepaper for the talk “Bridging the Gap between the Enterprise and You – or – Who’s the JBoss now”, held at hack.lu 2008, the 16th DFN-CERT Workshop and at RWTH Aachen University. The Whitepaper contains detailed descriptions of the attacks presented in the talk.

02/04/2008 - “Iterative Kompromittierungsgraphverfeinerung als methodische Grundlage für Netzwerkpenetrationstests”Sicherheit 2008

Paper from the talk “Iterative Kompromittierungsgraphverfeinerung als methodische Grundlage für Netzwerkpenetrationstests”, held at the Sicherheit 2008 security conference in Saarbrücken. The paper was published in the series “Lecture Notes in Informatics” in volume P-128 (ISSN 1617-5468, ISBN 978-3-88579-222-2).

12/12/2006 - “Penetrationtests – Hacken für mehr Sicherheit?”

Jens Liebchen reports about practical experiences doing penetration tests in an article in the german journal “Der EDV-Leiter”.

14/10/2005 - MISC Magazine

An article discussing the ideas and procedures of a penetration test, written for MISC (Multi-System & Internet Security Cookbook), a technical magazine about IT-Security.

25/08/2005 - “RedTeam warnt vor trügerischer Sicherheit des neuen iTAN-Verfahren”

Press release regarding the introduction of the iTAN system by many german online banks. The release points out the false security promises of the banks and outlines a Man-in-the-Middle attack, showing how it is still possible for phishers et al to get your account data. More articles and references can be found under Press.