This blog –part of a year-long research project that uncovered 60 different vulnerabilities across major vendors – discusses a vulnerability in the Windows group policy object (GPO) mechanism....

A look at code to parse the PE header and remove API hooks placed by AV/EDR.

Introduction Heresy's Gate Closing Nebbett's Gate Meltdown KVA Shadow Page Fault Loop NTDLL ...

Abusing a bug in Sysmon's driver to fake source processes' image file names.

During a red team engagement, one of the first things you may want to do after obtaining initial access is establish reliable persistence on the endpoint. Being able to streamline...

A dive into Windows DLLs, DLL hijacking, automation, WinAPI, and finding the root cause of shared DLL hijacks.

Starting with Windows 8.1 (and Server 2012 R2) Microsoft introduced a feature termed LSA Protection. This feature is based on the ...

A few weeks ago, I was going over some of the research topics in my to-do list, and the one that sounded interesting to work on during 4th…

Enumerate and disable common sources of telemetry used by AV/EDR. - jthuraisamy/TelemetrySourcerer

Describing all the techniques for attacking MS Exchange in Q2 2020 and introducing a new one: the LDAP via Exchange attack

I’ve been looking into Azure attack primitives over the past couple of months to gain a better understanding of how the system works, what…

Introduction During red team engagements, it is not uncommon to encounter Endpoint Defence & Response (EDR) / Prevention (EDP) products that implement user-land hooks to gain insight in to a...

I’ve been looking into Azure attack primitives over the past couple of months to gain a better understanding of how the system works, what…

Unfortunately, this page cannot be found.

Test tool for CVE-2020-1472. Contribute to bvcyber/CVE-2020-1472 development by creating an account on GitHub.

Written by Jon Baker and Forrest Carver.