Introduction Over the past few weeks, we have been monitoring suspicious activity directed against Russian-based companies that exposed a predator-prey relationship that we had not seen before. For the first time we were observing what seemed to be a c…

Introduction The inspiration to the following research was a CTF task called namespaces by _tsuro from the 35C3 CTF . While solvin...

Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019. - sevagas/WindowsDefender_ASR_Bypass-OffensiveCon2019

Hello Everyone

Test CVE-2018-0296 and extract usernames. Contribute to milo2012/CVE-2018-0296 development by creating an account on GitHub.

Confirmed! The @fluoroacetate team used an integer underflow and a race condition to escape the virtual machine and pop calc on the underlying OS. They earned another $35,000 and 3 points towards Master on Pwn.

5 Live’s Nihal Arthanayake meets six spies from MI5, MI6 and GCHQ.

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com - mandiant/commando-vm

The newest Windows 10 update includes OpenSSH utilities, including ssh-agent. Here’s how to extract unencrypted saved private keys from the registry

Unit 42 digs into the recent OilRig data dump and finds new information on the breadth of attacks and OilRig’s toolset. Our analysis show OilRig attacks are broader than previously thought: 97 organizations in 27 countries, including the Middle East and China…

Introduction