unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
Mixing watering hole attacks with history leak via CSS
Dear Fellowlship, today’s homily is about one of the fields that we most rejoiced in when we wer...
2024-8-13 08:0:0 | 阅读: 0 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
visited
github
captcha
client
mere
VBA: overwriting R/W/X memory in a reliable way
Dear Fellowlship, today’s homily is an addendum to our previous homily “VBA: having fun with mac...
2024-7-7 08:0:0 | 阅读: 0 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
memory
mbi
dim
shellcode
overwritten
A christmas tale: pwning GTB Central Console (CVE-2024-22107 & CVE-2024-22108)
Dear Fellowlship, today’s homily is about the paradox of how adding security solutions to your i...
2024-1-23 08:0:0 | 阅读: 19 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
psql
php
pwned
webapp
17023
VBA: having fun with macros, overwritten pointers & R/W/X memory
Dear Fellowlship, today’s homily is about an epiphany one of our owls had a couple of weekends a...
2024-1-12 08:0:0 | 阅读: 11 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
longptr
dim
mbi
memory
shellcode
Developers are juicy targets: DCOM & Visual Studio
Dear Fellowlship, today’s homily is about the umpteenth DCOM-based lateral movement method you’l...
2023-12-23 08:0:0 | 阅读: 11 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
dcom
machine
remote
debugger
developers
VBA: resolving exports in runtime without NtQueryInformationProcess or GetProcAddress
Dear Fellowlship, today’s homily is about bending the ungodly language of VBA to reduce traces w...
2023-3-17 08:0:0 | 阅读: 6 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
dim
longptr
varptr
copymemory
byval
Beating an old PHP source code protector
Dear Fellowlship, today’s homily is about our last fight against an ancient artifact called Nu-C...
2023-3-7 08:0:0 | 阅读: 4 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
php
opcodes
nu
coder
pwndbg
Spice up your persistence: loading PHP extensions from memory
Dear Fellowlship, today’s homily is about how to improve persistences based on PHP extensions. I...
2022-12-26 08:0:0 | 阅读: 12 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
php
adepts
libdata
hooked
0x69
Thoughts on the use of noVNC for phishing campaigns
Dear Fellowlship, today’s homily is a rebuke to all those sinners who have decided to abandon th...
2022-9-9 08:0:0 | 阅读: 15 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
rfb
decrypted
chromedate
chrome
evilnovnc
In the land of PHP you will always be (use-after-)free
Dear Fellowlship, today’s homily is about the quest of a poor human trying to escape the velvet...
2022-4-6 20:37:0 | 阅读: 4 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
placeholder
php
closure
repeat
Having fun with a Use-After-Free in ProFTPd (CVE-2020-9273)
Dear Fellowlship, today’s homily is about building a PoC for a Use-After-Free vulnerability in P...
2021-8-9 08:0:0 | 阅读: 15 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
blok
avail
rec
cleanups
gef
Adding a native sniffer to your implants: decomposing and recomposing PktMon
Dear Fellowlship, today’s homily is about how to add a sniffer to our implant. To accomplish thi...
2021-7-9 08:0:0 | 阅读: 6 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
pktmon
hdriver
inbuffer
buffersize
Knock! Knock! The postman is here! (abusing Mailslots and PortKnocking for connectionless shells)
Dear Fellowlship, today’s homily is about how a fool started to play with the idea of controllin...
2021-6-18 08:0:0 | 阅读: 4 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
fwpm
enumtempl
ft
numevents
Don’t use commands, use code: the tale of Netsh & PortProxy
Dear Fellowlship, today’s homily is a call to an (un)holy crusade: we have to banish the usage o...
2021-6-11 08:0:0 | 阅读: 5 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
portproxy
netsh
retstatus
v4tov4
machine
From theory to practice: analysis and PoC development for CVE-2020-28018 (Use-After-Free in Exim)
Dear Fellowlship, today’s homily is about building a PoC for one of the vulnerabilities publishe...
2021-5-14 08:0:0 | 阅读: 27 |
收藏
|
Adepts of 0xCC - adepts.of0x.cc
corked
gstring
newblock
oldsize
storeblock
Previous
-2
-1
0
1
2
3
4
5
Next