¡Queremos dar la enhorabuena a nuestro compañero @nek0x_ por obtener la certificación "Burp Suite Certified Practicioner" otorgada por PortSwigger!
---
We would like to congratulate our teammate @nek0x_ for obtaining the BSCP certification awarded by PortSwigger!
Learning the basics of Linux kernel exploitation
Excellent series by @k3170Makan
Debugging with QEMU: https://t.co/MFkoXhjCXP
Stack Overflows: https://t.co/E6meVjl5ub
RIP control: https://t.co/mIdgQs4F0f
#cybersecurity#infosec#Linux#kernel
part 2 of my latest blog post covering the heap overflow I found in MiniDLNA (CVE-2023-33476) is up! this one focuses on the exploit dev process used to get remote code execution and pop a shell. exploits included :D
https://t.co/0s8ENPMCUK
HelloUuuUuUuUUu, nuevo artiQLAZOoOoOoO
En este caso, el compañero @Txhaka_ nos trae su review de la certificación de Burp Suite, el BSCP.
Enjoy it!
https://t.co/2buaRRCInr
Hi guys, these past weeks I have been understanding how serialization and data type comparisons works in PHP and how to exploit these vulnerabilities. Here is the first post followed by one or two more to come!
https://t.co/bvnG0bx1Uq
Después de un mini parón, vuelven los artiQLAZOS
En este caso, @neekoox nos enseña como bypasear el AMSI a través de la función AmsiScanBuffer.
Spoiler: esta es la forma en la que Evil-WinRM lo hace 😳
Enjoy it!
https://t.co/z5BpdBWp8f
Chaos-Rootkit is a x64 kernel-mode rootkit that can hide processes or elevate their privileges, work on the latest Windows versions .
https://t.co/h2DLEuE1Qd
#Pentesting#redteam#CyberSecurity#infosec
I'm sure i'm late to the party, but MSFT put a user-writable folder in $path (%HOMEPATH%\Appdata\Local\Microsoft\
WindowsApps)??? OneDrive tries to load a non-existant DLL (Microsoft.UI.Xaml.XamlTypeInfo.dll) making for an easy user-level hijack #malware#redteam#cybersecurity