DIVD / Pepijn van der stap

Home
Team
Code of Conduct
News
Reports
CSIRT
Partners
Contact
Donate

Pepijn van der stap

Pepijn van der Stap

Role: Researcher level 2

Articles / cases / cves

CSIRT Cases

DIVD-2023-00002 - Publicly Reachable Malicious Webshells
DIVD-2022-00065 - Multiple Critical Vulnerabilities in multiple Zyxel EOL devices
DIVD-2022-00061 - KNXNet/IP gateways often left open to the internet
DIVD-2022-00056 - Critical authentication bypass affecting Fortigate products
DIVD-2022-00055 - Server Management Interfaces security issues
DIVD-2022-00054 - ProxyNotShell - Microsoft Exchange SSRF and RCE
DIVD-2022-00053 - Atlassian Bitbucket Server - CVE-2022-36804
DIVD-2022-00051 - H2 Web Console - CVE-2021-42392, CVE-2022-23221
DIVD-2022-00033 - Atlassian Confluence 0-day unauthenticated RCE
DIVD-2022-00030 - Exposed QNAP
DIVD-2022-00029 - Remote Code Execution on Sophos Firewall
DIVD-2022-00027 - F5 BIG-IP iControl REST API remote code execution
DIVD-2022-00026 - WSO2 Remote Code Executions - CVE-2022-29464
DIVD-2022-00024 - Spring Cloud RCE - CVE-2022-22963
DIVD-2022-00022 - WatchGuard Firebox and XTM appliance ACE vulnerability
DIVD-2022-00021 - Ivanti EPM CSA remote code execution
DIVD-2022-00012 - Global Charity Vulnerabilities
DIVD-2021-00023 - Atlassian Confluence OGNL injection (RCE)

Security
Twitter
Github
ANBI

Scanning from
AS50559
IPv4: 194.5.73.0/24 aka 194.5.73.0-194.5.73.255 - Our own local infrastructure
Cyberwar.nl
IPv4: 149.210.129.7 - Operated by Matthijs Koot
log4jdns.x00.it
IPv4: 5.2.67.229 - We use this domain and DNS server to track log4j vulnerabilities