Exchange Server CVE-2023-36745 n1k0la-t.github.io/2023/10/24/Mic… Standing on the Shoulder of Giants Piotr Bazydło .

Iconv, set the charset to RCE: in the first blog post of this series, Charles Fol will show a new exploitation vector to get RCE in PHP from a file read primitive, using a bug in iconv() (CVE-2024-2961) ambionics.io/blog/iconv-cve…

My OffensiveCon 2024 talk about Exchange PowerShell Remoting is available. Includes a chain of 3 vulns to RCE (file write + file read + DLL load). youtu.be/AxNO2iA2fAg?si…

很久之前挖的某EDR RCE n1k0la-t.github.io/2023/12/21/Tre…

The watchTowr Labs team is back, providing our full analysis of the Oracle E-Business Suite Pre-Auth RCE exploit chain (CVE-2025-61882). Enjoy with us (or cry, your choice..) labs.watchtowr.com/well-well-well…