Reporting on a security issue on ABC's iView.

Contribute to DODC/turncoat development by creating an account on GitHub.

On April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to download data from dozens of organizations, including npm. Read…

Contribute to netspooky/protocols development by creating an account on GitHub.

Taking apart a code signature and learning to reconstruct it

I participated in THCon 2k22 CTF and amongst the incredible “web” challenges - my favorite was “Local Card Maker” (made by jrjgjk). In this post I’ll describe the challenge and my step-by-step solution.

Simple (relatively) things allowing you to dig a bit deeper than usual.

A couple of weeks ago, Windhawk, the customization marketplace for Windows programs, was released. You can read the announcement for more details and for the motivation behind creating it. In this post, I’ll focus on my journey in implementing the technical…

Bypassing CrowdStrike and Microsoft Defender for Endpoint

I’ve always been fascinated by wireless communications. The ability to launch seemingly invisible packets of information up into the air without even the need to consider aerodynamics itself seems like some kind of magic.

The long-running BBC sci-fi show Doctor Who has a recurring plot device where the Doctor manages to get out of trouble by showing an identity card which is actually completely blank. Of course, thi…

In this second post we will focus on specific evidence written by the TIA Portal. As you might remember, in the first part we covered standard Windows-based artefacts regarding execution of the TIA…

network security company, CloudSEK has found in their daily monitoring that there are fake Windows 11 upgrade websites

Understanding Server-Side Request Forgery (SSRF), vulnerabilities and mitigations.

A walkthrough on how I made KernelCallbackTable process injection work according to what I wanted.