Welcome to JameZUK's Website

A blog about Cyber Security

Category: Uncategorized

  • Cisco CVE Published

    Today Cisco PSIRT reached out to tell me that my vulnerability for the Cisco IMC has been published and is now available here: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cimc-cmd-inj-mUx4c5AJ I plan to post a full disclosure soon.

  • Rooting a Cisco IMC for peace and power!

    Rooting a Cisco IMC for peace and power!

    A brief introduction TL;DR: In a home lab project, a Cisco UCS server was acquired to replace an older Dell server. However, the Cisco server’s fans were excessively loud and power-intensive. By gaining root access to the server’s Cisco Integrated Management Controller (IMC), which is similar to HP’s iLO or Dell’s iDRAC, it was possible…

  • SEC401 Training and GSEC Exam

    SEC401 Training and GSEC Exam

    So I have been very busy over the last month or so and have completed the GIAC SEC401 training course and associated GIAC GSEC exam. I’m really pleased to say I passed with a 93% score which means I should be invite into the GIAC advisory board! The exam was fair difficult with some particularly…