Hacking include sharing. This place dump stuffs I found interesting, maybe it can be helpful for others.| vegvisir
Last weekend I was looking for a reverse Windows challenge. The Midnight Flag CTF provides one challenge of this kind (difficulty : easy). Here is a short write-up & lessons learned about it. About Midnight Flag CTF In the field of computer security, the CTF (Capture the Flag) is a type of competitive event or challenge designed to test participants’ skills in various aspect, to find and/or exploit vulnerabilities affecting software, websites or computer systems in order to get a flag (drap...| vegvisir
In the previous blogpost - Fixing (Windows Internals) Meminfo.exe - we dig into the tool Meminfo.exe from Windows Internals Book highlighting “FileInfo requests”. I suggest you take a look at some details about another type of request named “SuperFetchQuery” which can be useful for some scenarios like Red Team / Privesc, Pentest, Exploit Dev or Maldev. Let’s take a look ! TL;DR The superfetch queries and fileInfo requests are alternatives methods that allow you to get many Windows i...| vegvisir
Hacking include sharing. This place dump stuffs I found interesting, maybe it can be helpful for others.| vegvisir
In this short blogpost we will discuss how named pipes and Powershell oneliners could be used for creating Windows bind / reverse shell using Windows SMB port. “When Red meets Blue…” Last year I had a chance to go to x33fcon for the first time. I highly recommend this conference for many reasons, here are just a few : technical level of the speakers a well organised conference red and blue talks & mindsets good quality of free workshops afterParty with worldwide hackers on the (Dragon c...| vegvisir
After the sandstorm it’s time for the blizzard ! The well-known EDRSandblast tool is a fantastic code base for Windows kernel investigating purpose, after several modification I decided to fork this project and wanted to share details about this with the community.| vegvisir
Some notes for Windows drivers reversing with IDA and GHIDRA| vegvisir
Loading unsigned Windows drivers without reboot. Dive into gdrv-loader source code.| vegvisir
How to get a root shell on the old LG HR 598 Bluray player ? Here is some notes about my hardware hacking journey.| vegvisir
During my journey into the Windows Kernel I found interesting to create a tool to elevate any process to SYSTEM using a driver. Here are some details about that.| vegvisir