Extracting Windows Users Password Hints with PowerShell

This is a quick blog post about extracting Password Hints for Windows users using PowerShell. Recently, while playing with Windows Registry...

Read More

HTTP Evader - Automate Firewall and IDS Evasion Tests

While HTTP is defined in RFC2616 (HTTP/1.1) the specification does not address every tiny detail. This makes browsers behave similar for t...

Read More

Extracting Digital Signatures from Signed Malware with pf

Lot of malware/PUP (Potential Unwanted Programs)/Adwares are now digitally signed. Those signatures can contain interesting properties that...

Read More

Zhone ADSL2+ 4P Bridge&Router - Multiple Vulnerabilities

Document Title: =============== Zhone ADSL2+ 4P Bridge&Router - Multiple Vulnerabilities References (Source): ==================== ht...

Read More

Virtual Freer v1.57 - Authentication Bypass Vulnerability

Document Title: =============== Virtual Freer v1.57 - Authentication Bypass Vulnerability References (Source): ==================== http:...

Read More

[CVE-2014-7216] Yahoo! Messenger emoticons.xml Multiple Key Value Handling Local Buffer Overflow

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ----------------------- Product: Yahoo! Messenger Ven...

Read More

Analyzing Popular Layer 7 Application DDoS Attacks

Distributed Denial of Service (DDoS) attacks have been a major concern for website owners for a while. All types of sites, from small to bi...

Read More

Metasploit: Windows Escalate UAC Protection Bypass

## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ##...

Read More

LinkedIn Sockpuppets Are Targeting Security Researchers

Multiple LinkedIn accounts recently targeted numerous security specialists in an attempt to map their social graphs. Several of our researc...

Read More

W^X policy violation affecting all Windows drivers compiled in Visual Studio 2013 and previous

Back in June, I was doing some analysis on a Windows driver and discovered that the INIT section had the read, write, and executable charac...

Read More

Paper: Automating Information Flow Analysis of Low Level Code

ABSTRACT Low level code is challenging: It lacks structure, it uses jumps and symbolic addresses, the control flow is often highly optim...

Read More

Checkmarx CxQL Sandbox bypass (CVE-2014-8778)

Checkmarx CxQL Sandbox bypass (CVE-2014-8778) Vendor: Checkmarx - www.checkmarx.com Product: CxSuite Version affected: 7.1.5 and prior Cr...

Read More

Tiny Banker hidden in modified WinObj tool from Sysinternals

Tiny Banker aka Tinba Trojan made a name for itself targeting banking customers worldwide. The Avast Virus Lab first analyzed the malware f...

Read More

Shifu: A new interesting Banking Trojan

Hello everybody, today I'd like to share some infos on "Shifu" a new incredibly interesting banking trojan. At this point you...

Read More

Cross-Site Request Forgery in Cerb

Advisory ID: HTB23269 Product: Cerb Vendor: Webgroup Media LLC Vulnerable Version(s): 7.0.3 and probably prior Tested Version: 7.0.3 Adviso...

Read More

PayPal Inc - SecApproval & 2FA Auth Bypass Vulnerability

Document Title: =============== PayPal Inc - SecApproval & 2FA Auth Bypass Vulnerability References (Source): ==================== ht...

Read More

Netflix Sleepy Puppy XSS Payload Management Framework

Sleepy Puppy is a cross-site scripting (XSS) payload management framework which simplifies the ability to capture, manage, and track XSS pr...

Read More

About the “tpwn” Local Privilege Escalation

This post had to come out two weeks ago, but due to school exams I haven’t had the time to write this down. So, tpwn gains root on any OS...

Read More

Flash Exploit Detector

Flash Exploit Detector(FED), or named FlashProtector. A BHO of IE, detect Flash Vector Exploit and print logs in c:\fp. You need create...

Read More

KL-001-2015-004 : XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation

KL-001-2015-004 : XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation Title: XGI Windows VGA Display Manager Arbitrary Wr...

Read More

KL-001-2015-003 : SiS Windows VGA Display Manager Multiple Privilege Escalation

KL-001-2015-003 : SiS Windows VGA Display Manager Multiple Privilege Escalation Title: SiS Windows VGA Display Manager Multiple Privilege ...

Read More

[CORE-2015-0013] - FortiClient Antivirus Multiple Vulnerabilities

1. Advisory Information Title: FortiClient Antivirus Multiple Vulnerabilities Advisory ID: CORE-2015-0013 Advisory URL: http://www.coresec...

Read More