CYBERSECURITY BLOGS

The Ultimate guide to Breaking JWT, JWT are primarily used for authentication & authorization almost everywhere in modern web. JWTs can possess security vulnerabilities if configured and implemented improperly, potentially causing havoc. Thus, understanding how JWTs work and how they might fail is critical when securing systems that leverage JWTs.

Stealth Syscalls: Because Life's Too Short to Argue with an Angry EDR! Introduction to Stealth Syscalls System calls (syscalls) serve as the bridge between user-mode processes and the Windows kernel. They facilitate crucial tasks such as memory management, file operations, and process creation. Security tools like Event Tracing for Windows (ETW), Sysmon, and debuggers such as x64dbg and WinDbg actively monitor these interactions to detect malicious or anomalous syscall execut

Unlike process injection, hollow process injection suspends a legitimate process, overwrites its existing code section with malicious code,