top of page
Search
CVE-2023-28231: DHCP Server Remote Code Execution Vulnerability
Analysis, POC and mitigation of CVE-2023-28231 DHCP Server Remote Code Execution Vulnerability, a heap based buffer overflow issue in DHCPv6
Jun 7, 20235 min read
Â
Â
Microsoft CVE-2023-21746 Exploit: obtaining SYSTEM Access using LocalPotato NTLM
Why did the hacker cross the road? To get to the other network. Introduction On September 9, 2022, Microsoft received a report from Andrea Pierini and Antonio Cocomazzi about Windows's local privilege escalation (LPE) vulnerability. This vulnerability could enable an attacker with limited privileges on a host to gain SYSTEM privileges and read/write any file on the system. Microsoft addressed the LocalPotato vulnerability in the January 2023 patch Tuesday, and a PoC was publi
Mar 25, 20238 min read
Â
Â
Performing IFEO Injection
IFEO Injection attack is a registry-based attack technique that almost guarantees a code execution as a logged-in user.
Mar 21, 20233 min read
Â
Â
Blog Categories
bottom of page