Reverse Engineering 0x4 Fun
Reverse Engineering & Windows Internals.
Tuesday, August 13, 2019
Comodo Antivirus - Sandbox Race Condition Use-After-Free (CVE-2019-14694)
›
Hello, In this blogpost I'm going to share an analysis of a recent finding in yet another Antivirus, this time in Comodo AV. After read...
Tuesday, May 14, 2019
Panda Antivirus - Local Privilege Escalation (CVE-2019-12042)
›
Hello, This blogpost is about a vulnerability that I found in Panda Antivirus that leads to privilege escalation from an unprivileged acco...
Saturday, April 6, 2019
Circumventing Windows Defender ATP's user-mode APC Injection sensor from Kernel-mode
›
In this blogpost, I will share a simple technique to circumvent the check that was introduced in Windows 10 build 1809 to detect user-mode A...
Wednesday, March 27, 2019
Examining the user-mode APC injection sensor introduced in Windows 10 build 1809
›
Yesterday I've read Microsoft's blog post about the new ATP kernel sensors added to log injection of user-mode APCs. That got me cur...
Tuesday, February 5, 2019
VirtualProtectEx to bypass ASLR : A specific case study
›
More than a year ago, I developed a local privilege escalation exploit for a product (that I cannot disclose unfortunately) in which I had t...
Saturday, October 6, 2018
Flare-On 5 CTF - Challenge 12 Writeup
›
Flare-on was a blast this year ! All challenges were great but I enjoyed solving the last one the most, although it was somewhat frustrating...
›
Home
View web version
