Razer rzpnk.sys IOCTL 0x22a050 ZwOpenProcess (CVE-2017-9769)
Today SecureState is releasing the second and more serious of two unpatched vulnerabilities identified within drivers used in the gaming […]
The Inner Workings Of Railgun
Recently, Railgun functionality was added to Metasploit’s Python Meterpreter. This blog describes details of the implementation and how it provides […]
Pivot, Exploit, Death by Firewall
Another scenario that is getting all too familiar: It is another day in the office. The external penetration test is […]
Meterpreter Transports: Digging in with your Shell!
The scenario is all too familiar: Its a been a long week of digital warfare, and you are about to […]
Launch rdesktop from Metasploit
I often resort to remote desktop sessions when pillaging or attempting lateral escalation. Remote desktop provides an easy way to […]
Metasploit Module of the Month – enum_ad_computers
Summer has officially ended and Autumn is setting in. As the leaves begin to fall and September draws to a […]
- Building a Vulnerable Box – Rejetto HFS 546 views
- CTF – PHP and OS Command Injection 452 views
- Physical Penetration Testing Basics – A Primer 432 views
- Leveraging MS16-032 with PowerShell Empire 347 views
- DLL Injection Part 1: SetWindowsHookEx 318 views
- How to Bypass SEP with Admin Access 281 views
- DLL Injection Part 2: CreateRemoteThread and More 223 views
- Evil Twin Attack Using hostapd-wpe 213 views
- Reconnaissance with Recon-ng 181 views
- Updating Anti-CSRF Tokens in Burp Suite 179 views
- Physical Penetration Testing Basics – A Primer - 10-9-2017
- Pentesting Restrictive Environments – Part 2 - 10-6-2017
- Pentesting Restrictive Environments – Part 1 - 10-6-2017
- Updating Anti-CSRF Tokens in Burp Suite - 09-8-2017
- Insecure Direct Object References - 09-1-2017
- Breakdown of HTTP Messages - 08-14-2017