A new RTF (9001056791a03ec998f26805d462bc2ca336b2c3aeac2e210f73ff841dfe3eec) has just been discovered and it’s the same toolset that is…

Andrey Konovalov has realised a new security note Linux Kernel < 4.4.0-83 / < 4.8.0-58 (Ubuntu 14.04 and 16.04) Local Privilege Escalation

D-Link Routers - Plaintext Password. CVE-2018-10824 . webapps exploit for Hardware platform

D-Link Routers - Directory Traversal. CVE-2018-10822 . webapps exploit for Hardware platform

D-Link Routers - Command Injection. CVE-2018-10823 . webapps exploit for Hardware platform

Recently I was interested in exploring the PE headers and writing simple programs to manipulate different headers. There are thousands of applications and code to be found on this topic. I started …

TL;DR An Office XML (.xml) document can call a remote XSL stylesheet over SMB.  If this occurs against an attacker controlled server, the net-NTLM authentication hash (challenge/response) of t…

Report by Belgian prosecutors believed to support allegations made by Edward Snowden

TL;DR @FoxIT made a rad tool, and I integrated it into Empire with one additional feature (pending pull request approval) This post started when I viewed a tweet by @FoxIT where they were showcasing their awesome work on creating a phishing Powershell script.…

Hey all, In the previous post we discussed using Responder with Snarf, this post will be doing the same but through a pivot.  To pivot in we’ll be using Simpletun and a layer 2 pivoting clien…

Process injection is a widespread defense evasion technique employed often within malware and fileless adversary tradecraft, and entails running custom code within the address space of another process...

Recently i had to perform some comparative tests on a couple of whitelisting solutions. One of the crucial step of the test was the proper functioning of memory monitoring feature, useful in case o…