Pentest TV: Videos on the SySS YouTube channel

February 2024 |  SySS Proof of Concept Video: SySS Radio Hack Box 2.0

In the video, IT security expert Matthias Deeg shows different attacks against a vulnerable AES-encrypted wireless keyboard. For that, he utilizes a new version of the SySS Radio Hack Box.

January 2024 |  SySS Proof of Concept Video: Remotely Rooting a Smart Home Server

In this PoC video, IT security expert Tobias Jäger demonstrates an attack against a vulnerable Loxone Miniserver Go Smarthome server. For that, three different security vulnerabilities are exploited in order to gain access as root user via the device's network access.

December 2023 |  SySS Proof of Concept Video: Eaton easy Password Hacking

In this video, IT security expert Manuel Stotz illustrates two security vulnerabilities regarding the control relay "easyE4" as well as the respective software "easySoft" from the manufacturer Eaton.

August 2023 |  SySS Proof of Concept Video: Sorry, But Your Mouse is Still Admin

In this Proof of Concept video, another successful local Windows privilege escalation attack via the Razer Synapse installer is illustrated. Through exploiting this vulnerability, administrative privileges can be obtained.

July 2023 |  SySS Proof of Concept Video: Reversing the Irreversible, again: Unlocking "locked" Omnis Studio classes

IT security expert Matthias Deeg demonstrates another security vulnerability in Omnis Studio. Locked Omnis classes can be unlocked and further analyzed or modified in the Omnis Studio browser.

July 2023 |  SySS Proof of Concept Video: Reversing the Irreversible: Hacking "always private" Omnis Studio libraries

In this PoC video, SySS IT security expert Matthias Deeg shows a vulnerability in the rapid application software development tool Omnis Studio. He demonstrates an attack against always private Omnis libraries which, due to implementation errors, can be analyzed and edited in the Omnis Studio browser.

September 2022 |  SySS Tool Tip Video: Hashcathelper: A useful convenience tool for password recovery with hashcat

In this tool tip video, IT security expert Matthias Deeg demonstrates a typical hashcathelper workflow, including the password recovery of LM/NT hashes as well as a statistical evaluation. hashcathelper is a software tool developed by SySS Expert IT Security Consultant Dr. Adrian Vollmer.

June 2022 |  SySS Proof of Concept Video: Hacking Yet Another Secure USB Flash Drive

In this SySS Proof of Concept video, IT security expert Matthias Deeg demonstrates another successful attack against a "secure" portable data storage – this time in the form of a Verbatim Executive Fingerprint Secure SSD. Hereby, unauthorized access to the encrypted user data can be gained once again.

June 2022 |  SySS Proof of Concept Video: Rooting Mitel Desk Phones Through the Backdoor

In this PoC video, IT security expert Moritz Abrell shows how an attacker with physical access can gain root access on a Mitel Desk Phone using an undocumented backdoor.

June 2022 |  SySS Proof of Concept Video: Hacking a Secure USB Flash Drive

IT security expert Matthias Deeg demonstrates a successful attack against a "secure" Verbatim Keypad Secure USB Flash Drive. Hereby, unauthorized access to the encrypted user data can be gained.

March 2022 |  SySS Proof of Concept Video: Yet Another Local Privilege Escalation Attack via Razer Synapse Installer

In this SySS Proof of Concept video, IT security experts Dr. Oliver Schwarz and Matthias Deeg show the local Windows privilege escalation via the Razer Synapse installer.

December 2021 |  SySS Proof of Concept Video: Attacking Oracle Native Network Encryption

SySS IT Security Expert Moritz Bechler shows an attack against the security protocol Oracle Native Network Encryption which is used for securing Oracle database connections.

June 2021 |  SySS Proof of Concept video: To the Future and Back: Hacking a TOTP Hardware Token (Protectimus SLIM NFC)

In this PoC video, SySS IT security expert Matthias Deeg demonstrates a "time traveler attack" against the vulnerable TOTP hardware token Protectimus SLIM NFC.

March 2021 |  Penetration Testing Communication Systems Nowadays (Hacktivity 2020)

In this talk presented at the Hacktivity IT Security Festival 2020, SySS IT security expert Moritz Abrell talks about security assessments of modern VoIP and Unified Communication systems, and his developed software tool set WireBug.

March 2021 |  SySS Proof of Concept Video: Zoom Unintended Screen Sharing Issue

SySS Proof of Concept-Video demonstrates a security issue in the screen sharing functionality of the Zoom video conferencing software

October 2020 |  There is Always One More Bug – or More: Revisiting a Wireless Alarm System

In this talk presented at the Hacktivity IT Security Festival 2020, SySS IT security expert Matthias Deeg tells the story of how several security issues were found in a single security product over the last few years

September 2020 |  SySS Pentest TV: Exklusive look behind the scenes

SySS IT security expert Matthias Deeg talks about the why and how of creating YouTube content like SySS proof of concept videos at SySS

July 2020 |  SySS Proof of Concept Video: ABUS Secvest Spoofing Attack

SySS IT security expert Matthias Deeg demonstrates a spoofing attack against the insecure wireless communication of an ABUS Secvest wireless alarm system and its hybrid module FUMO50110

July 2020 |  SySS Tool Tip Video: WireBug Tool Set

SySS tool tip video presents tool set for carrying out security analyses of Voice-over-IP (VoIP) and Unified Communication (UC) systems, named WireBug, which was developed by the SySS IT security expert Moritz Abrell

July 2020 |  SySS Proof of Concept Video: Apple iOS Mobile Device Management (MDM) Restriction Bypass

SySS proof of concept video demonstrates a specific restriction bypass security vulnerability in the Apple iOS mobile device management (MDM) functionality, which was found by SySS Senior IT Security Consultant Philipp Buchegger

June 2020 |  SySS Proof of Concept Video: ABUS Secvest Sniffing Attack

SySS IT security expert Matthias Deeg demonstrates a sniffing attack against the insecure wireless communication of an ABUS Secvest wireless alarm system and its wireless control device FUBE50001

May 2020 |  SySS Tool Tip Video: Burp Extender JSON API for PortSwigger Burp Suite

New SySS tool tip video presents Burp Suite extension developed by IT security expert Torsten Lutz

March 2020 |  SySS Proof of Concept Video: There's No Sound of the Police - Reactive Jamming Attack Against a Wireless Alarm System

SySS IT security expert Matthias Deeg demonstrates a rather simple but yet effective attack against many radio-based systems, namely a reactive jamming attack.

March 2020 |  SySS Proof of Concept Video: Exploiting the Obvious, but not the Trivial: Unencrypted NAND Flash Memory

SySS IT security expert Matthias Deeg demonstrates a rather obvious attack exploiting unencrypted NAND flash memory for gaining unauthorized root access.

February 2020 |  SySS Proof of Concept Video: LPC Bus Sniffing Attack against Microsoft BitLocker in TPM-only Mode

SySS IT Security Expert Matthias Deeg demonstrates a sniffing attack against the Low Pin Count (LPC) bus communication of a trusted platform module (TPM).

January 2020 |  SySS Proof of Concept Video: Voltage Glitching Attack using SySS iCEstick Glitcher

SySS IT Security Consultant Matthias Deeg demonstrates a voltage glitching attack.

November 2019 |  SySS Proof of Concept Video: Exploiting Bluetooth Trust Relationships

Senior Expert IT Security Consultant Matthias Deeg demonstrates an attack exploiting a Bluetooth trust relationship between a smartphone and Bluetooth headphones.

July 2019 |  SySS Proof of Concept Video: Administrating WolfVision Cynap the Hacker's Way

The SySS Proof of Concept video demonstrates a successful attack for the obtainment of administrative rights on a vulnerable Cynap system.

May 2019 |  SySS Proof of Concept Video: Siemens LOGO!8 PLC Password Hacking

The SySS Proof of Concept video shows the successful reading out of all saved password information of a Siemens LOGO!8 by using a developed proof-of-concept tool in the form of a Nmap script.

May 2019 |  SySS Proof of Concept Video: Logitech R400 Keystroke Injection Attack

SySS expert IT security consultant Matthias Deeg demonstrates how a computer system can be attacked through the exploitation of a keystroke injection vulnerability of the Wireless Presenter Logitech R400 by means of wireless communication from afar.

May 2019 |  SySS Proof of Concept Video: ABUS Secvest Proximity Key Cloning PoC Attack

SySS Proof of Concept video presents the successful cloning of an ABUS Proximity Key in three different ways.

April 2019 |  SySS Proof of Concept Video: Attacking RDP with Seth

This SySS Proof of Concept video demonstrates how poorly configured RDP sessions can be attacked by using our software tool Seth, which has been developed by SySS IT security consultant Dr. Adrian Vollmer.

March 2019 |  SySS Proof of Concept Video: ABUS Secvest Rolling Code PoC Attack

The SySS Proof of Concept video demonstrates the exploitation of the rolling code vulnerability in ABUS Secvest wireless alarm system.

March 2019 |  SySS Proof of Concept Video: Fujitsu Wireless Keyboard Set LX901 Keystroke Injection Attack

Expert IT security consultant Matthias Deeg demonstrates a detected keystroke injection vulnerability in the Fujitsu Wireless Keyboard Set LX901 with AES encryption.

December 2017 |  SySS Proof of Concept Video, Biometrics 3/3: Windows Hello Face Authentication Bypass

Part 3 of the spoofing attack against different versions of the biometric authentification process Windows Hello Face Authentication by Microsoft.

December 2017 |  SySS Proof of Concept Video, Biometrics 2/3: Windows Hello Face Authentication Bypass

Part 2 of the spoofing attack against different verions of the biometric authentication process Windows Hello Face Authentication by Microsoft.

December 2017 |  SySS Proof of Concept Video, Biometrics 1/3: Windows Hello Face Authentication Bypass

The two expert IT security consultants Matthias Deeg and Philipp Buchegger of SySS GmbH demonstrate a spoofing attack against different verions of the biometric authentication process Windows Hello Face Authentication by Microsoft.

March 2017 |  Live Hacking with SySS GmbH

Live hacking events are not only Sebastian Schreiber's signature trademark but they are also established in the portfolio of SySS GmbH. SySS live hackers stage an abstract threat that can happen to anyone in an impressive way – if you wan to, at your event!

September 2016 |  Radioactive Mouse States the Obvious

The SySS Proof of Concept video demonstrates an attack on computer systems due to insecure wireless communication of mice.

September 2016 |  SySS Cherry Picker

In the video: Successful attack on AES-encrypted wireless keyboards

July 2016 |  SySS in Fast Motion

Three months of "building SySS" in fast motion – from April to June 2016. The progress on the construction site cannot be overlooked.

April 2016 |  Re-Drilling at a Depth of Six Meters

The construction site of the new SySS site is located in an area that was bombed during World War II: Explosive ordnance detection is supposed to exclude the risks for the upcoming civil engineering works.

DO NOT HESITATE TO GET IN TOUCH +49 (0)7071 - 40 78 56-0 or anfrage@syss.de | OUTSIDE REGULAR OFFICE Hours CALL +49 (0)7071 - 40 78 56-99

As a framework contract customer please dial the provided on-call service number

DO NOT HESITATE TO GET IN TOUCH +49 (0)7071 - 40 78 56-0 or anfrage@syss.de

OUTSIDE REGULAR OFFICE Hours CALL +49 (0)7071 - 40 78 56-99

As a framework contract customer please dial the provided on-call service number

GET IN TOUCH

+49 (0)7071 - 40 78 56-0 or anfrage@syss.de

OUTSIDE REGULAR OFFICE Hours

+49 (0)7071 - 40 78 56-99

As a framework contract customer please dial the provided on-call service number