Matthew Kienow


Vulnerability Researcher

20 Published Articles

About Matthew Kienow

Matthew Kienow is a software engineer and security researcher. Matthew previously worked on the Recog recognition framework, AttackerKB as well as Metasploit's MSF 5 APIs. He has also designed, built, and successfully deployed many secure software solutions; however, often he enjoys breaking them instead. He has presented his research at various security conferences including DerbyCon, Hack In Paris, and CarolinaCon. His research has been cited by CSO, Threatpost and SC Magazine.

Latest Stories

Rapid Response
How to find Cisco Identity Services Engine (ISE) installations
Three vulnerabilities have been disclosed in certain versions of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector...
Rapid Response
How to find Microsoft SharePoint Server installations on your network
Multiple vulnerabilities have been disclosed in Microsoft SharePoint Server web services. Here's how to find affected assets.
Rapid Response
How to find VMware ESXi installations on your network
Broadcom has disclosed four vulnerabilities in certain versions of VMware ESXi, Workstation, Fusion, and Tools. Here's how to find affected assets.
Rapid Response
How to find CrushFTP installations on your network
CrushFTP has disclosed a vulnerability affecting specific versions of its file transfer software, confirmed to be under active exploitation in the...
Rapid Response
How to find Fortinet assets on your network
Fortinet has issued an advisory for a vulnerability affecting certain versions of their FortiWeb product. Here's how to find affected assets.
Rapid Response
How to find Citrix NetScaler ADC & Gateway instances on your network
Two vulnerabilities were disclosed that impact customer-managed installations of NetScaler ADC and NetScaler Gateway.
Rapid Response
How to find Wing FTP Server installations on your network
Multiple vulnerabilities were disclosed in certain versions of Wing FTP Server, with evidence of the vulnerability being actively exploited in the...
Rapid Response
How to find Phoenix Contact devices on your network
In July 2025, Phoenix Contact disclosed vulnerabilities in certain models and versions of their AC charging controller and PLC firmware.
Rapid Response
How to find Microsoft SQL Server installations on your network
Microsoft has disclosed three vulnerabilities in certain versions of Microsoft SQL Server. Here's how to find affected assets on your network.
Rapid Response
How to find Mitsubishi Electric Air Conditioning Systems
A critical authentication bypass vulnerability has been disclosed in Mitsubishi Electric air conditioning systems.
Rapid Response
How to find Brother printer, scanner and label maker devices on your network
Rapid7 has disclosed eight vulnerabilities in certain models and versions of Brother printer, scanner and label maker devices. Here's how to find...
runZero Research
Out-of-Band, Part 1: The new generation of IP KVMs and how to find them
We begin the series exploring security risks of OoB management devices like BMCs, serial console servers, and IP-enabled KVMs, and share how to...
Rapid Response
How to find Progress MOVEit Transfer installations on your network
Progress software disclosed two new vulnerabilities in their MOVEit Gateway product. Here's how to find affected services on your network.
Rapid Response
How to find Aviatrix Controller on your network
Mandiant recently disclosed two vulnerabilities in Aviatrix Controller. Here's how to find affected assets on your network.
Rapid Response
How to find Roundcube Webmail on your network
A Roundcube Webmail vulnerability would allow a remote, authenticated attacker to perform RCE due to deserialization of untrusted data.
Rapid Response
How to find ScreenConnect installations
Certain versions of ConnectWise ScreenConnect may be susceptible to ViewState code injection attacks in ASP.NET Web Forms.
Rapid Response
How to find Weidmüller Industrial Ethernet switches on your network
Multiple vulnerabilities have been disclosed in certain models and versions of Weidmüller Industrial Ethernet switch firmware.
Rapid Response
How to find potentially compromised ASUS routers in your network
ASUS routers exposed to the public Internet are being compromised, with backdoors being installed. Here's how to find impacted assets on your network.
Rapid Response
How to find AutomationDirect Modbus Gateways on your network
A vulnerability has been disclosed in AutomationDirect MB-GATEWAY Modbus gateways, that would allow unrestricted remote access to the device.
Rapid Response
How to find TP-Link Archer AX50 routers on your network
A vulnerability has been disclosed in TP-Link Archer AX50 routers. This vulnerability would allow a remote, unauthenticated attacker to execute...