In this post, I’ll discuss an arbitrary file move vulnerability I found in Windows Service Tracing. From my testing, it affected all versions of Windows from Vista to 10 but it’s probably even older because this feature was already present in XP.

Posted by Evgenii Stepanov, Staff Software Engineer, Dynamic Tools Native code in memory-unsafe languages like C and C++ is often vuln...

Hashtopolis - distributed password cracking with Hashcat - hashtopolis/server

Introduction Back in 2018, PaloAlto Unit42 publicly documented RGDoor, an IIS backdoor used by the APT34. The article highlighted some details which sparked my interest and inspired me to write...

I‘m going to share an (ab)use of a Windows feature which can result in bypassing User Group Policy (as well as a few other interesting…

Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit. - sorokinpf/sqli_blinder

Virtual machines for iOS and macOS. Contribute to utmapp/UTM development by creating an account on GitHub.

Your security research may be eligible for a reward through the Apple Security Bounty. We welcome reports from anyone.

In this post we will be looking at AWS Lambda, how we can deploy code using the Serverless framework, and how we can use this technology as a redirector for Cobalt Strike

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️ - 0x4D31/awesome-threat-detection

This most recent Patch Tuesday, Microsoft released an Important-rated patch to address a remote code execution bug in Microsoft Exchange Server. This vulnerability was reported to us by an anonymous researcher and affects all supported versions of Microsoft…

Kr00k – formally known as CVE-2019-15126 – is a vulnerability in Broadcom and Cypress Wi-Fi chips that allows unauthorized decryption of some WPA2-encrypted traffic.