Menu

How to get local root shell on the LG HR598 Bluray

How to get local root shell on the LG HR598 Bluray

For a long time I was wondering how to pwn embedded (or IoT) devices. I managed to get a root shell on my old LG HR 598 Bluray player, here is some notes about my hardware hacking journey.


Read more →

Pimp my PID - get SYSTEM using Windows kernel

Pimp my PID - get SYSTEM using Windows kernel

During my journey into the Windows Kernel I found interesting to create a tool to elevate any process to SYSTEM using a driver. Here are some details about that.


Read more →

Rconfig - From zero to (root)shell

Rconfig - From zero to (root)shell

Looking at the Rconfig 3.9 source code lead to find several security bugs which can be chained in order to get unauthenticated (root) remote code execution.


Read more →