Sharing is Caring!
Alfresco Reset Password Add-on - 0day Vulnerabilities
17 September 2020
This post is as much about the penetration testing process and the 0-day approach as it is about the vulnerability. I discovered a 0-day vulnerability in one of the most used plugin for Password Reset on Alfresco Content Services framework.
Read More...
OAuth 2.0 - What could go wrong
30 August 2020
Nowadays modern web applications may implement or use OAuth 2.0
for there own services. In this post we will understand how OAuth 2.0 works and how it can present vulnerabilities.
Windows Kernel Shellcode : TokenStealer
3 February 2020
A typical Reverse/Bind shellcode will not work when it comes to Windows Kernel Exploitation, most of the time people often use (Nulling out ACLs, Enabling privileges or Replacing process token).
Read More...
From [email protected] to RCE in X86_64
29 November 2019
While playing some pwn in HackZone CTF, i figured out a new technique for Arbitrary Code Execution only by using the read
function from libc.
CVE-2019-18276 - Suidbash
28 November 2019
This exploit was initially based on an older vulnerability back in 1999 (suidperl
). Now after 20 years in 2019 we found the same vulnerability in bash (CVE-2019-18276
) was discovered by Ian Pudney.