[New Post] Here is my detailed write-up on a new #SMBv1 vulnerability named #SMBLost (CVE-2020-1301). #RCE conceivable. Find out why #SMBLost is less harmful than #SMBGhost or #EternalBlue. #PoC causing a remote #DoS available. Stay secure! 🙂 ➡️

RT @_0xDeku: If you have not checked it out yet, Windows Downdate tool is live! You can use it to take over Windows Updates to downgrade an…

RT @phrack: The time has come, and with it your reading material for the week. Phrack #71 is officially released ONLINE! Let us know what…

RT @waleedassar: I am releasing my kernel fuzzer "SimpleNTSyscallFuzzer" for public use. With the help of this generic fuzzer, i managed to…

RT @saab_sec: Blog Post Alert: Tale of Code Integrity & Driver Loads 🔸Reversing sc.exe and MS-SCMR 🔸Some RPC internals 🔸Debugging PPL proc…

RT @landaire: Exploiting the NT Kernel in 24H2: New Bugs in Old Code & Side Channels Against KASLR by @gabe_k

RT @0xor0ne: This is an excellent series on virtualization and internals of various solutions (QEMU, Xen and VMWare) Credits @LordNoteworth…

RT @DebugPrivilege: I did two write-ups about ETW. The first one will cover how to capture an ETW trace and covers a case-study using the W…

RT @aflplusplus: The recording of our #37c3 talk "Fuzz Everything, Everywhere, All at Once - Advanced QEMU-based fuzzing" can be found here…

RT @jsecurity101: It’s very common for us to see offensive tooling enable SeDebugPrivilege so that they may bypass certain OS checks. Howev…

RT @akamai_research: Akamai researchers discovered a critical vulnerability in Microsoft Windows Server 2022. This vuln can be triggered by…

RT @quarkslab: Reversing Windows Container, episode I: Silo An exploration of the depths of #Windows #container technology by Quarkslab's e…

RT @AndrewOliveau: 💥BOOM!💥 Another privilege escalation blog, this time showcasing how to convert arbitrary file deletions 🗑️ to SYSTEM com…

RT @quarkslab: Did you know that Windows processes fundamental to Operating System security run in Isolated User Mode and can not be debug…

RT @Big5_sec: Here is a little analysis of @masthoon's CVE-2023-29360, a beautiful LPE he used during last Pwn2own:

RT @_ceax: [Tool] Ghidralligator: Emulate and fuzz code running on various CPU architectures (ARM, MIPS, PPC, x86, Apple Silicon M1/M2...)…

RT @Synacktiv: 📱Dive into the inner workings of jemalloc new: one of the libc allocators used on modern #Android devices. Enhance your unde…

RT @akamai_research: Akamai researchers have identified 3 vulnerabilities in MS-RPC runtime, all with a base score of 8.1. In our latest…

RT @mtarral: It's been a while since I've given updates here, especially since I started at Intel one year ago ! I've taken over the maint…

RT @CyberWarship: "Attacking the Android kernel using the Qualcomm TrustZone" #infosec #redteam #pentest https://…

RT @citronneur: Time Travel Debugging IDA plugin, ttddbg, 1.1.0 is out with new tracing feature ! Based on #IDA database, arguments and ret…