Apr 5, 20236 minVulnerabilityMicrosoft Outlook CVE-2023-23397: Critical Privilege Escalation VulnerabilityIntroduction On the latest Patch Tuesday, Microsoft released 83 security fixes, one of which is the "CVE-2023-23397" vulnerability that...
Mar 26, 20235 minVulnerabilityUnpacking CVE-2022-30190: An In-Depth Analysis of Follina RCEUnpacking CVE-2022-30190: An In-Depth Analysis of MS Office Follina RCE and it's mitigation
Mar 25, 20237 minVulnerabilityMicrosoft CVE-2023-21746 Exploit: obtaining SYSTEM Access using LocalPotato NTLMWhy did the hacker cross the road? To get to the other network. Introduction On September 9, 2022, Microsoft received a report from...
Mar 21, 20233 minPenetration Testing Performing IFEO InjectionIFEO Injection attack is a registry-based attack technique that almost guarantees a code execution as a logged-in user.
Mar 21, 20236 minPenetration TestingThick Client Penetration Testing: Uncovering Vulnerabilities in Desktop ApplicationsThe thick client penetration testing blog educates pen testers on Windows thick client pen-testing.