End-to-end ‘modern’ browser exploitation on Windows beginning with configuring a browser exploitation environment, exploring JavaScript intrinsics, and under...
Examining recent changes to a highly-abused static structure, KUSER_SHARED_DATA, and its exploitation impact.
Combining part 1’s information leak vulnerability with a pool overflow vulnerability to obtain code execution via grooming the kLFH
Leveraging the HackSysExtreme Vulnerable Driver to understand the Windows kernel pool, the impacts of kLFH, and bypassing kASLR from low integrity via out-of...
Analysis and writeup on weaponizing CVE-2021-21551 without a data-only attack and the importance of Virtualization-Based Security, Hypervisor-Protected Code ...