Development of a new Windows 10 KASLR Bypass (in One WinDBG Command)
by Morten Schenk Windows 10 1809 Kernel ASLR Bypass Evolution When it is well-implemented, Kernel Address...
Everything related to vulnerability and exploit development, including OffSec course updates and live training.
by Morten Schenk Windows 10 1809 Kernel ASLR Bypass Evolution When it is well-implemented, Kernel Address...
Some time ago, we noticed some security researchers looking for critical vulnerabilities affecting “security” based products...
A few months ago, we decided to make a new module for our Advanced Windows Exploitation...
Last week Microsoft released EMET 5.1 to address some compatibility issues and strengthen mitigations to make...
In our previous Disarming Emet 4.x blog post, we demonstrated how to disarm the ROP mitigations...
In a recent engagement, we had the opportunity to audit a leading Antivirus Endpoint Protection solution,...
With the emergence of recent Internet Explorer Vulnerabilities, we’ve been seeing a trend of EMET recommendations...
In the past few days there has been some online chatter about a new Windows XP/2k3...
In one of our recent pentests, we discovered an 0day for a custom C application server...
On a recent penetration test, we encountered an installation of CA ARCserve Backup on one of...
During a routine scan of new vulnerability reports for the Exploit Database, we came across a...
Every patch Tuesday, we, like many in the security industry, love to analyze the released patches...