We are Shielder,

an IT Security company.

We are dynamic and talented. Our specialists are our beating heart and that’s why we never stop. We adapt ourselves to an ever changing world while bearing in mind what brought us here: the need to understand each and every bit.

Inspect element

What we do

Rely on us,

we will raise your barriers.

Application Security
Application Security
Application Security

Research

Show all

Advisory

Autodesk Fusion 360 <= 2.0.12887 parses SVG files with a vulnerable XML parser, leading to a Blind XML External Entities (XXE).

Read more

Advisory

pfSense <= 2.5.2 allows authenticated users to inject arbitrary sed-specific code, which leads to an Arbitrary File Write, resulting in a Remote Code Execution. The vulnerability is also exploitable through a Cross-Site Request Forgery.

Read more

Advisory

Visual Studio Code Remote Development Extension 1.50 failed to sanitize the host field before using it as an argument of the ssh command, allowing to inject a ProxyCommand option which could be used to run arbitray commands.

Read more

Our blog

Latest News

How to Decrypt Manage Engine PMP Passwords for Fun and Domain Admin - a Red Teaming Tale

How to Decrypt Manage Engine PMP Passwords for Fun and Domain Admin - a Red Teaming Tale

By smaury & thezero

05/09/2022

Printing Fake Fiscal Receipts - An Italian Job p.2

Printing Fake Fiscal Receipts - An Italian Job p.2

By thezero

16/05/2022

Printing Fake Fiscal Receipts - An Italian Job p.1

Printing Fake Fiscal Receipts - An Italian Job p.1

By thezero

19/04/2022