When Sodin appeared in the first half of 2019, it immediately caught our attention for distributing itself through an Oracle Weblogic vulnerability and carrying out attacks on MSP providers.

Trail of Bits recently completed a security assessment of Kubernetes, including its interaction with Docker. Felix Wilhelm’s recent tweet of a Proof of Concept (PoC) “container escape” sparked our interest, since we performed similar research and were curious…

In May, I published a blog post detailing a Remote Code Execution vulnerability in Dell SupportAssist. Since then, my research has continued and I have been finding more and more vulnerabilities. I strongly suggest that you read my previous blog post, not…

Antivirus (AV) is a great target for vulnerability hunting: Large attack surface, complex parsing, and various components executing with…

Also known by Microsoft as Knifecoat :hot_pepper:. Contribute to FuzzySecurity/Sharp-Suite development by creating an account on GitHub.

Linux 4.10 < 5.1.17 PTRACE_TRACEME local root. Contribute to jas502n/CVE-2019-13272 development by creating an account on GitHub.

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting - AdrianVollmer/PowerHub

Google Search Scraper. Contribute to s0md3v/goop development by creating an account on GitHub.

A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group