Jan 192 minGetting Shells on Easy ModeThis forms part of a new series of blog posts looking at client-side attacks and evasion strategies used by hackers. Running Shell Code...
Jan 122 minWeaponising C#This forms part of a new series of blog posts looking at client-side attacks and evasion strategies used by hackers. Running Shell Code...
Jan 52 minWeaponising JScript This forms part of a new series of blog posts looking at client-side attacks and evasion strategies used by hackers. When looking at...
Dec 29, 20213 minWeaponising Word With PowershellThis forms part of a new series of blog posts looking at client-side attacks and evasion strategies used by hackers. As discussed last...
Dec 22, 20213 minWeaponising Word With VBAThis forms part of a new series of blog posts looking at client-side attacks and evasion strategies used by hackers. Office Products are...
Dec 17, 20212 minHTML SmugglingThis forms part of a new series of blog posts looking at client-side attacks and evasion strategies used by hackers. Whilst in many cases...
Aug 16, 20212 minActiveXCVE-2021-40444, is a client side remote code execution vulnerability in MSHTML, reported on 7 Sep 2021 and later updated 14 Sep 2021....
Aug 16, 20214 minZerologon (CVE-2020-1472): An Unauthenticated Privilege Escalation to Full Domain PrivilegeCVE-2020-1472 is a privilege elevation vulnerability in the Netlogon Remote Protocol (MS-NRPC) for which a partial patch was released by...