this blog post is about Exploiting Insecure Firebase Databases, due to Improper set security rules one can write data to the database in certain conditions here’s a Short POC tutorial of the issue.

Waitfor is a Microsoft binary which is typically used to synchronize computers across a network by sending signals. This communication mechanism can be used in a red team operation in order to down…

This post is going to outline how I simply applied my methodology and managed to find multiple vulnerabilities leaking airline passenger…

Monitor activity of any driver. Contribute to zodiacon/DriverMon development by creating an account on GitHub.

In this sequel, wvu recounts the R&D (in all its imperfect glory) behind creating a Metasploit module for the DOUBLEPULSAR implant's lesser-known RDP variant. If you're unfamiliar with the more common SMB variant, you can read our blog post detailing how…

Several months have passed by without any new security publications. Hoping to unveil my current research at this time labelled “The…

Automatically brute force all services running on a target. - 1N3/BruteX

Server Side Request Forgery (SSRF) Nishith K (@busk3r)

Proof of concept for single/multiple shellcode process injection malware in Go language. - GitHub - s1egesystems/GoProcessInject0r: Proof of concept for single/multiple shellcode process injection ...

This is a quick and dirty POC with no frills, no guard rails and almost no testing 😊

A local privilege escalation in Ricoh Windows printer drivers is affecting many Ricoh printer models.

Contribute to embedded-sec/halucinator development by creating an account on GitHub.

It’s no secret that attackers are looking for new techniques to execute lateral movement. However, there are only a handful of publicly…

Hi Folks, Today I'll be writing about some interesting SQL injection vulnerabilities I recently found. This is a private program so ...