Exploit Development: Browser Exploitation on Windows - Understanding Use-After-Free Vulnerabilities
Documenting my journey from ground 0 to (hopefully) more modern browser exploitation.
Recent posts
Malware Development: Leveraging Beacon Object Files for Remote Process Injection via Thread Hijacking
Utilizing Cobalt Strike’s in-memory C capabilities to inject a Beacon implant into a remote process without spawning a remote thread on 64-bit systems.
Exploit Development: Between a Rock and a (Xtended Flow) Guard Place: Examining XFG
Taking a look at Microsoft’s new forward-edge CFI solution: Xtended Flow Guard
The Current State of Exploit Development, Part 2
In part two, we walk through the many exploit mitigations that Microsoft has put in place - include Page Table Randomization, Arbitrary Code Guard, and CET.
The Current State of Exploit Development, Part 1
This two-part series explores the evolution of exploit development and vulnerability research on Windows - beginning with types and legacy mitigation techniq...