A free but powerful Windows kernel research tool. Contribute to AxtMueller/Windows-Kernel-Explorer development by creating an account on GitHub.

Slides from my talk at the OFFZONE 2018 conference (https://www.offzone.moscow/report/hunting-for-privilege-escalation-in-windows-environment/)

Z-WASP attack - Phishers used a recently fixed flaw in Office 365 that allows them to bypass protections using zero-width spaces.

Mobile, Web, and API Security

🐶 A curated list of Web Security materials and resources. - qazbnm456/awesome-web-security

Watch someone try to solve the Order statistic of an unsorted array problem in Java with a Google engineer.

Book a mock interview or coaching session with a LinkedIn engineer as early as tomorrow on interviewing.io! Sign up here: https://interviewing.io/signup…

Another buffer overflow example where I overwrite EIP to redirect code execution. (x32)

Find out more on SentinelOne Linux agent new feature - Shadow SUID Protection. Learn why it's important and how SentinelOne customers can stay safe

In this binary exploitation post I show a simple buffer overflow exploited to get code execution by shellcode injection in case the stack is executable. (x32)

#BugBountyTips

Some time ago, one of our customers contacted us with a special request. For some legitimate reason, they needed to centrally collect certain certificates including their private keys which were distributed across many client systems running Windows and stored…

A friend recently asked me what methods I use to find subdomains.
To be honest I was confused, like “oooohhh so much, brute force mmm… zone transfer and… brute for… wait Google and mmm… many other tools!”
What a shame that I was so inaccurate after so much…

Let’s examine 4 specific techniques that comprise fileless attacks and why they often go undetected by existing defenses.

Apache use after free bug infos / ASAN stack traces - GitHub - hannob/apache-uaf: Apache use after free bug infos / ASAN stack traces

tl;dr I found a vulnerability in apt that allows a network man-in-the-middle (or a malicious package mirror) to execute arbitrary code as root on a machine i...

CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit! - 0x27/CiscoRV320Dump