Yuval Lazar

Technical Product Manager & Senior Security Researcher at Pentera

6 articles by this writer

4 steps to knowing your exploitable attack surface

According to Cisco's latest cybersecurity reports, 19% of organizations had over 100,000 daily security alerts in 2023, a significant increase from ...

The Shift from Port 445 to Port 135 in Cybersecurity

If it was possible to nominate a command-line utility for an award, PsExec would definitively win the most useful category. This tool allows adminis...

Mitigating VMware vCenter Information Disclosure

  New zero-day vulnerability joins a chain of recently discovered vulnerabilities capable of operating an end-to-end attack on ESXi. Org...

From DHCP Spoofing to EternalBlue: Security Insights

DHCP may be famous for being an essential Windows networking protocol, but it is also infamous, or at least it should be, for falling victim to cybe...

Preventing DHCP Spoofing Attacks

DHCP is an essential Windows networking protocol and a favorite among network admins. Let’s go over the basics of DHCP allocation and review common ...

Understanding VMware vCenter Privilege Escalation

Executive summary Pentera’s research team ‘Pentera Labs’ discovered a vulnerability in VMware’s vCenter Server program. The affected VMware s...