SensePost | Blog | Post exploitation

No Egress, No Shell, No Problem

Reading time: ~5 min

Posted by adriaan.bosch@orangecyberdefense.com on 26 June 2025

Categories: Post-exploitation, Shell, Tool, Post exploitation, Rce

Context, context, context; Alright, imagine this – you’re on an engagement, find a few vulnerabilities, run a few exploits and...

Investigating an in-the-wild campaign using RCE in CraftCMS

Reading time: ~35 min

Posted by Nicolas Bourras on 18 April 2025

Categories: Analysis, Craft cms, Incident response, Ioc, Malware, Php, Post-exploitation, Threat hunting, Yii, Iocs, Post exploitation

Introduction In mid-February, Orange Cyberdefense’s CSIRT was tasked with investigating a server that had been hosting a now-unavailable website. The...

Our Blog

No Egress, No Shell, No Problem

Investigating an in-the-wild campaign using RCE in CraftCMS