@timmisiak look at rsp for example is great. The stack window is there but most the time I want to scroll further and beyond alongside with a more intuitive understanding of where I am in the stack is the only reason I am still on windbg :(. Thanks again for the great product!
@timmisiak big fan of windbgx. Everything is much better and more fluid. However, just a feedback and it is that hotkey-only new windows suck. I had to ask tons of people after googling resulting in nothing useful (it was ctrl + shift + m). Would love a more intuitive way!
@timmisiak Thanks for the reply Tim! I appreciate it. One last suggestion (and maybe I am a coconut and haven't figure it out yet) but the ability to view memory as other forms (Pointer and Symbol to be specific) would be godsend. The ability to scroll &
@layle_ctf@ColtonSkees On top of that, what DB implemented is more than many other manufacturers does to secure their signed drivers. Go get some CVEs and clout there instead where the source is not open to the public unlike CE (https://t.co/YUcY89AHNZ).
@layle_ctf@ColtonSkees Because DB and CE's job is to provide hackers with a hacking tool. Not adding more and more security on top of already existing ones. Plus, it is open source. So this will require DB to:
1. wild goose chase on an open source software to keep you happy.
2. everyone signs their own
@layle_ctf But why tho? DarkByte wrote one of the greatest tool that every game hacker relies on and give it out for free. Why wouldn't you honor his wishes to keep things safe?
Are there any Write-What-Where primitive left in W10 x64 1909? Seem like Gh?4 RGNOBJ is the only one intact and I'm not even sure if that is usable as a primitive. @msftsecurity, give back my GDI objects!
New COM post (and PoC) just published. This one journeys into COM server development, building a component for offensive use cases that can then be loaded with registration-free COM. Feedback welcome.
https://t.co/ccJBSLiXsn
During a recent long-term red team op, we bypassed CloudFlare to obtain a foothold on a subsidiary. AD forest exploitation followed, which allowed for compromising the parent company. This post focuses on bypassing CloudFlare WAF.
https://t.co/WpGN9aMw0i
@vysecurity When your opponent is a kernel level anticheat that disregards usability, privacy, stability, and compatibility, Modern EDR Solutions (TM) looks cute in comparison.
@BillDemirkapi Similarly, I also happen to get to use forced exception through pointer destruction which is another nice trick to pair up with VEH. AGAIN, sorry for necroing this haha.
@BillDemirkapi Sorry for replying to something a year back, was scrolling through my Twitter and realized I never replied, my fault. I think you know this by now that a lot of games do anticheat do use DR register as a way to stop debuggers from placing hwbp but your comment is correct =).
@jasc22@TomahawkApt69@NCCGroupInfosec@leoloobeek If you can show me the code. It have a custom cmd that you can use, just ends with &. This should let you execute anything in cmd as admin. Sorry for the late reply, holiday and travel. Do let me know if you need more help we can hit up DM.
Thanks to @NCCGroupInfosec for releasing their write up on CVE-2019-1405 and CVE-2019-1322. I figured it is time for me to learn some COM stuff so I whip up a PoC.
Source: https://t.co/Ucpa7SykiS .
Video: https://t.co/h45WJKhMMO
Thanks to @leoloobeek and @TomahawkApt69