Tools comes and goes, but methodology stays with you.
On my journey to learn exploit development I often feel lost and overwhelmed. You simple do not know what you are looking for, and it is not fun to spend weeks on something and come back empty handed.
I was curious if there is a methodology on how professional security researchers are doing their job. Of course, there is a pattern "fuzz it until you get a crash, analyze and exploit it, repeat", but you could not cover everything with fuzzing.
I was sure that there must be something, and I recently stumbled on this - an approach where you are utilize already known CVEs in a way that I never thought of. The idea is to treat CVEs as North Stars in vulnerability discovery and comprehension.
Check it out yourself, I found it insightful:
https://cve-north-stars.github.io/
Happy Friday everyone!
#exploitdev
On my journey to learn exploit development I often feel lost and overwhelmed. You simple do not know what you are looking for, and it is not fun to spend weeks on something and come back empty handed.
I was curious if there is a methodology on how professional security researchers are doing their job. Of course, there is a pattern "fuzz it until you get a crash, analyze and exploit it, repeat", but you could not cover everything with fuzzing.
I was sure that there must be something, and I recently stumbled on this - an approach where you are utilize already known CVEs in a way that I never thought of. The idea is to treat CVEs as North Stars in vulnerability discovery and comprehension.
Check it out yourself, I found it insightful:
https://cve-north-stars.github.io/
Happy Friday everyone!
#exploitdev
CVE North Stars
Home
Leveraging CVE, patch diffing, and root cause analysis to kickstart your vulnerability hunting adventure.
Potato for dinner.
Yet another iteration of Local Privilege Escalation for Windows just got published! It can get you from Service Account to System in no time!
You can read more about it here: https://decoder.cloud/2022/09/21/giving-juicypotato-a-second-chance-juicypotatong/
PoC is available here: https://github.com/antonioCoco/JuicyPotatoNG
#pentest
Yet another iteration of Local Privilege Escalation for Windows just got published! It can get you from Service Account to System in no time!
You can read more about it here: https://decoder.cloud/2022/09/21/giving-juicypotato-a-second-chance-juicypotatong/
PoC is available here: https://github.com/antonioCoco/JuicyPotatoNG
#pentest
Hello hackers,
It's a hundred of you here, wow. It might doesn't sound like much to you, but it was a personal milestone for me.
Thank you! I have so many cool ideas in the pipeline for this channel, so stay in touch!
Long story short, a want to make it more of a community place. Some of you could say that the hacking community is dead, which is partially true, but I refuse to give up and want to cultivate the bits of it that are left.
The worst thing that you can encounter in your journey is gatekeepers. Gatekeepers are usually the people who are telling you that you are not good enough or could not make it. Usually, but not always. Sometimes the worst gatekeeper is yourself, but sometimes it's also things that you can't control at all.
I know that for many of you the biggest gatekeeper right now is the current financial situation.
During my journey, I learned a ton from other people. People, who shared their knowledge and expertise with others. People, who had the goal to enable others to learn and grow.
Today I would like to do the same. Even if it would affect only a few people, I think it's worth it.
It's a hundred of you here, wow. It might doesn't sound like much to you, but it was a personal milestone for me.
Thank you! I have so many cool ideas in the pipeline for this channel, so stay in touch!
Long story short, a want to make it more of a community place. Some of you could say that the hacking community is dead, which is partially true, but I refuse to give up and want to cultivate the bits of it that are left.
The worst thing that you can encounter in your journey is gatekeepers. Gatekeepers are usually the people who are telling you that you are not good enough or could not make it. Usually, but not always. Sometimes the worst gatekeeper is yourself, but sometimes it's also things that you can't control at all.
I know that for many of you the biggest gatekeeper right now is the current financial situation.
During my journey, I learned a ton from other people. People, who shared their knowledge and expertise with others. People, who had the goal to enable others to learn and grow.
Today I would like to do the same. Even if it would affect only a few people, I think it's worth it.
So here is the deal. To celebrate this personal milestone I would like to make a humble giveaway.
Post your favorite (doesn't have to be new) infosec/hacking-related meme in the comments here and I will select a few winners tomorrow.
Those winners will get a premium subscription to HackTheBox for a month.
Let's make each other smile in these dark times.
Post your favorite (doesn't have to be new) infosec/hacking-related meme in the comments here and I will select a few winners tomorrow.
Those winners will get a premium subscription to HackTheBox for a month.
Let's make each other smile in these dark times.
Thank you for this meme blast, folks!
As I promised, I'll provide all of you with the HackTheBox VIP+ subscription for a month!
You can get 1 Month VIP+ or 1 Month VIP and £5 for your next subscription.
Congratulations and kudos to @cXestXlaXvie, @Kiriknik, @hummelchen0!
I'll reach out to you shortly to get your email addresses to send out gift cards.
For the rest of you, don't worry if you missed the hype. We will surely do this again 👀
As I promised, I'll provide all of you with the HackTheBox VIP+ subscription for a month!
I'll reach out to you shortly to get your email addresses to send out gift cards.
For the rest of you, don't worry if you missed the hype. We will surely do this again 👀
Only 9 hours left until the start of Flare-On 9.
I wanted to participate for several years now, but the learning curve seemed too harsh. Well, let's see if all the knowledge and skills I acquired over the past year would be enough.
For those of you who don't know, Flare-On is a reverse engineering and malware analysis-oriented #CTF made by Mandiant which happens every year.
Quote from their site:
Registration is open already, let's go!
https://flare-on9.ctfd.io/
I wanted to participate for several years now, but the learning curve seemed too harsh. Well, let's see if all the knowledge and skills I acquired over the past year would be enough.
For those of you who don't know, Flare-On is a reverse engineering and malware analysis-oriented #CTF made by Mandiant which happens every year.
Quote from their site:
The Front Line Advanced Research and Expertise (FLARE) team is an elite technical group of malware analysts, researchers, and hackers. We are looking to hire smart individuals interested in reverse engineering. We have created this series of binary challenges to test your skills. We encourage anyone to participate and practice their skills while having fun!
If you are planning to participate this year as well - let me know in the chat. It's always nice being able to bounce questions and hints if you are stuck. Registration is open already, let's go!
https://flare-on9.ctfd.io/
Summarizing my whole experience of participating in Scavenger Hunt CTF on BSides København in a single picture!
I found and submit all the flags only to find out that two other individuals did the same within the same 60 seconds, which placed me the 3rd on the scoreboard.
The moments like this make it memorable.
#conference #ctf
I found and submit all the flags only to find out that two other individuals did the same within the same 60 seconds, which placed me the 3rd on the scoreboard.
The moments like this make it memorable.
#conference #ctf
The perfect way to spend Friday night. The first edition of @vxunderground Black Mass just arrived!
You can find a free digital copy on their site.
A physical one is available on Amazon for just 8$!
It's been a while since I had any physical zines, especially #malware related. I'm hyped!
What is your favorite security-related zine?
A physical one is available on Amazon for just 8$!
It's been a while since I had any physical zines, especially #malware related. I'm hyped!
What is your favorite security-related zine?
It's this time of the year again!
A nice collection of infosec related deals for this Black Friday:
https://github.com/0x90n/InfoSec-Black-Friday
A nice collection of infosec related deals for this Black Friday:
https://github.com/0x90n/InfoSec-Black-Friday
Oh my, so many cool books for my ever-growing backlog!
https://www.humblebundle.com/books/hacking-no-starch-press-books-2022
https://www.humblebundle.com/books/hacking-no-starch-press-books-2022
Humble Bundle
Humble Tech Book Bundle: The Art of Hacking by No Starch Press
We’ve teamed up with No Starch Press for our newest bundle. Get books like Hacking APIs and Bug Bounty Bootcamp. Plus, pay what you want & support charity!
I was playing with ChatGPT the other day to see if it can be useful for protesters or not and made a small and funny presentation for a local security meetup.
Why not share a deck of slides with you too?
I would love to hear your thoughts on the use of such AI technologies for the good (or bad)!
A syllabus of those slides:
- writing a regular expression for nmap output
- writing a shellcode
- making a free version of an infosec course by having only a list of topics
- writing a bug bounty or a pentest report
#talk
Why not share a deck of slides with you too?
I would love to hear your thoughts on the use of such AI technologies for the good (or bad)!
A syllabus of those slides:
- writing a regular expression for nmap output
- writing a shellcode
- making a free version of an infosec course by having only a list of topics
- writing a bug bounty or a pentest report
#talk
Here we go! Starting my exam attempt for PJMR (Practical Junior Malware Researcher from TCM).
Would you want to read a review after?
#cert
Would you want to read a review after?
#cert
The review on PJMR #cert is here!
With some home baked memes 👌
https://telegra.ph/Practical-Junior-Malware-Researcher-PJMR-Certification-Review-06-07
With some home baked memes 👌
https://telegra.ph/Practical-Junior-Malware-Researcher-PJMR-Certification-Review-06-07
Telegraph
Practical Junior Malware Researcher (PJMR) Certification Review
In late February 2023 TCM security launched their brand-new certificate - Practical Junior Malware Researcher (PJMR, I called it pajamas). In this blogpost I wanted to share my experience of taking the exam for this certification, and what it feels like to…
And as I’m spamming you with notifications anyway, have a look at this:
https://x86re.com/1.html
A nice #RE learning material for beginners.
Five points to Gryffindor if you can tell me in the comments how such a visual can be achieved. I love the aesthetic.
https://x86re.com/1.html
A nice #RE learning material for beginners.
Five points to Gryffindor if you can tell me in the comments how such a visual can be achieved. I love the aesthetic.