Windows Internals Meminfo.exe tool allows to retrieve information about physical & virtual memory. Some options did not give any output/crash. I give some workarounds (including one by midi12) maybe it can help if someone encounter the same issues: v1k1ngfr.github.io/windows-intern…

"SuperFetchQuery" can be useful for some scenarios like Red Team, Exploit Dev or Maldev. Let’s take a look ! v1k1ngfr.github.io/superfetchquer…

I’m SO stoked to finally announce DistrictCon - a new DC hacker conference, bringing together hackers across industries to do cool sh*t 🎉🪩 (Feb 21-22,2025) DistrictCon.org/get-notified

[Research] Hyper-V 1-day Class: CVE-2024-38080 이번 연구글은 Hyper-V LPE 취약점인 CVE-2024-38080 patch diffing, poc 작성입니다. 익스플로잇은 못했습니다 🥲 hackyboiz.github.io/2024/09/01/pwn…

Have you ever wondered how your PC communicates with an Android device when using adb? Check out our new blogpost! synacktiv.com/publications/d…

Worried about attackers sneakily spying on your optical fibers ? Learn with @r3n1k how they operate, and how you can defeat them - for cheaper than a flagship smartphone ! synacktiv.com/publications/d…

[Research] Hyper-V 1-day Class: CVE-2024-38127 이번 연구글도 Hyper-V LPE 취약점 분석입니다. CVE-2024-38127의 patch diffing, poc에 대해 다루었습니다 🧐 hackyboiz.github.io/2024/09/15/pwn…

Excellent talk at the Off-By-One Conference 2024 (Off-By-One Conference) "Exploring WebKit’s Just In Time Compilation" by Vignesh Rao Presentation video: youtu.be/9rt9ErQKnf8 Presentation paper: github.com/star-sg/OBO/bl…

GHSL-2024-095: Type confusion leading to RCE in the Chrome renderer sandbox - CVE-2024-5830 securitylab.github.com/advisories/GHS…

NEW! Repeatable Failures: Test Keys Used to Sign Production Software…Again? 🔥Full details: binarly.io/blog/repeatabl…

Yesterday I finally finished part II of my anti rootkit evasion series, where I showcase some detections for driver "stomping", attack flawed implementations of my anti-rootkit, hide system threads via the PspCidTable and detect that as well. Enjoy! eversinc33.com/posts/anti-ant…

The IERAE CTF has a CET bypass challenge that looks really interesting. Full CET enabled and you have to exploit a simple stack buffer overflow?! Here's the link if you want to try it: ierae-ctf.com

I ended up writing an exploit for the CET challenge from IERAE CTF. Full write up here: gist.github.com/sroettger/fe66… The gist of it was that you control a function pointer with two arguments. IBT actually didn't help much since everything has a landing pad :(. (1/n)

If you're feeling bored on a lazy Sunday afternoon, here's a fun little CTF: ctf.gitatechnologies.com

A summary of groundbreaking JTAG-based features for Windows Hyper-V, Secure Kernel, VBS, etc. debug: asset-intertech.com/resources/blog…

RE//verse tickets are now available for purchase! Go go go! shop.binary.ninja/products/re-ve… #infosec #conference

vectorize.re/blog/vulnerabi… Very cool research by Vectorize

I've published a new blog post detailing how to write an iOS kernel exploit for PhysPuppet from scratch. Enjoy! alfiecg.uk/2024/09/24/Ker…