Chris Avants

Category Archives: cybersec

Send on behalf of?

Today while working with a friend of mine we identified what we believed is a vulnerability with Microsoft Exchange.¬† Here’s the scenario, let me know what you think below:) This morning I was expecting a meeting invite to join a session, and after our scheduled meeting time had come and gone I grabbed the last […]

Captive Portal Bypass / Hacking

A quick 3-minute video illustrating why it’s important to secure captive portals. In this example, it’s bypassing simple terms of use or user acceptance policy, but the same hack works on more than a few popular captive portals out there. If we go to the effort to create a security policy, ensure your properly enforcing […]