We care about
your security.

Nethemba is a leading Slovak IT security firm especialized in web security, penetration testing, and RFID security audits. Since 2007, we’ve been securing businesses with cutting-edge research and expertise, trusted by companies worldwide.

We care about
your security.

Nethemba is a leading Slovak IT security firm especialized in web security, penetration testing, and RFID security audits. Since 2007, we’ve been securing businesses with cutting-edge research and expertise, trusted by companies worldwide.

BLOG

Discovery of CVE-2022-24833

When on a security audit for a client it was discovered that a key component – the open-source private paste service PrivateBin contained a previously undocumented flaw. Cross-site-scripting is nothing new. I actually feel there must be prehistoric cave paintings and markings somewhere in the world containing some variation of <script>alert(1)</script>. Although XSS payloads embedded […]

Read More

Facebook

Nethemba
Nethemba1 day ago
#32 Grandpa And Granny (HackTheBox) (Easy) - A Lesson To Know Your Filenames (As I Didn't -)

Two systems here rated Easy which have many similarities, but are there any differences...?
shell-x86 vs shell-86 really screwed me over here... Idiot User Error
Nethemba
#32 Grandpa And Granny (HackTheBox) (Easy) - A Lesson To Know Your Filenames (As I Didn't -.-)
Two systems here rated Easy which have many similarities, but are there any differences...?shell-x86 vs shell-86 really screwed me over here... Idiot User Er...
Nethemba
Nethemba1 day ago
A Single Poisoned Document Could Leak ‘Secret’ Data Via ChatGPT
Security researchers found a weakness in OpenAI Connectors, which let you hook up ChatGPT to other services, that allowed them to extract data from a Google Drive without any user interaction
Nethemba
Nethemba2 days ago
#33 Ra (Try Hack Me) (Hard) This One Is Tough...

A little OSINT gains us access to some shares, but when an instant messaging app and some LDAP come into play will we be able to grab some NTLM hashes and gain admin access?
Complicated and difficult box.
Nethemba
#33 Ra (Try Hack Me) (Hard) This One Is Tough...
A little OSINT gains us access to some shares, but when an instant messaging app and some LDAP come into play will we be able to grab some NTLM hashes and ga...