Server Side Request Forgery (SSRF) Nishith K (@busk3r)

Proof of concept for single/multiple shellcode process injection malware in Go language. - GitHub - s1egesystems/GoProcessInject0r: Proof of concept for single/multiple shellcode process injection ...

This is a quick and dirty POC with no frills, no guard rails and almost no testing 😊

A local privilege escalation in Ricoh Windows printer drivers is affecting many Ricoh printer models.

Contribute to embedded-sec/halucinator development by creating an account on GitHub.

It’s no secret that attackers are looking for new techniques to execute lateral movement. However, there are only a handful of publicly…

Hi Folks, Today I'll be writing about some interesting SQL injection vulnerabilities I recently found. This is a private program so ...

A hidden feature of Metasploit, is the ability to add SMB Named Pipe listeners in a meterpreter session to pivot on an internal network…

What is Hyperlink Injection, its basically spoofing or injecting a link while sending an email…

**Summary:** com.twitter.android.lite.TwitterLiteActivity is set to exported and doesn't validate data pass to intent due to which this activity vulnerable to steal users local files, javascript...

Symbolic Link attacks can lead to the escalation of privilege. They are easy to execute and have the potential to cause some serious damage.

The security flaws were identified by a cybersecurity firm Check Point, which the company claims to have fixed

Active Directory Assessment and Privilege Escalation Script - hausec/ADAPE-Script

Product Version: Avira VPN Operating System tested on: Windows 10 1709 (x64) Vulnerability: Avira VPN Service Local Privilege Escalation Brief Description: When the Phantom VPN Service (Avira.VPNSe…

This post is a complete walkthrough for the process of writing an exploit for CVE 2019-18634. I will talk about the methodologies used and why is it such a good bug to begin your real world exploitation skills. This bug allows for Local Privilege Escalation…