Menu

Archives

Drivers

05 May 2024 » Fixing (Windows Internals) Meminfo.exe

EDR

11 Feb 2024 » Fuegoshell : Windows remote shell re-using TCP 445

23 Aug 2023 » EDRSnowblast - blizzard on EDR drivers

Embedded

28 Nov 2020 » How to get local root shell on the LG HR598 Bluray

Exploit Dev

25 Aug 2024 » The SuperFetch Query superpower

Exploits

08 Dec 2019 » Rconfig - From zero to (root)shell

Hardware

28 Nov 2020 » How to get local root shell on the LG HR598 Bluray

IoT

28 Nov 2020 » How to get local root shell on the LG HR598 Bluray

Kernel

23 Aug 2023 » EDRSnowblast - blizzard on EDR drivers

05 Jul 2023 » Windows kernel driver static reverse using IDA and GHIDRA

27 Oct 2021 » Loading unsigned Windows drivers without reboot

16 May 2020 » Pimp my PID - get SYSTEM using Windows kernel

Maldev

25 Aug 2024 » The SuperFetch Query superpower

Powershell

11 Feb 2024 » Fuegoshell : Windows remote shell re-using TCP 445

Privesc

25 Aug 2024 » The SuperFetch Query superpower

Reverse

05 May 2024 » Fixing (Windows Internals) Meminfo.exe

05 Jul 2023 » Windows kernel driver static reverse using IDA and GHIDRA

Rootkit

27 Oct 2021 » Loading unsigned Windows drivers without reboot

16 May 2020 » Pimp my PID - get SYSTEM using Windows kernel

Tool

23 Aug 2023 » EDRSnowblast - blizzard on EDR drivers

Weaponization

16 May 2020 » Pimp my PID - get SYSTEM using Windows kernel

Web

08 Dec 2019 » Rconfig - From zero to (root)shell

Windows

25 Aug 2024 » The SuperFetch Query superpower

05 May 2024 » Fixing (Windows Internals) Meminfo.exe

11 Feb 2024 » Fuegoshell : Windows remote shell re-using TCP 445

23 Aug 2023 » EDRSnowblast - blizzard on EDR drivers

05 Jul 2023 » Windows kernel driver static reverse using IDA and GHIDRA

27 Oct 2021 » Loading unsigned Windows drivers without reboot

16 May 2020 » Pimp my PID - get SYSTEM using Windows kernel