Research Blog

Published blog posts from the team

Blog Posts


Vuln research on the WAG54G home router

Journey of hunting for bugs in the WAG54G routers http daemon. The end goal of this research is to find a way to remotely flash C&C firmware (pre-auth), while learning a thing or two along the way... hey, we'd never actually touched MIPS assembly before this!


A review of the EFF secure messaging scorecard...

First part in a series of reviews against IM clients promoted by the EFF secure messaging scorecard, drawing from real examples to demonstrate the dependency between privacy and security. Findings have been patched in the latest release of RetroShare.


Gaining console access to the WAG54G home router

Illustrated guide on identifying and interfacing with the serial pinout exposed on the Linksys WAG54G home router, useful for debugging and exploit dev.


Why I recommend Chrome to family...

An analysis of the browser threat landscape and reasoning about browser security for the family user.