/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

cocomelonc.github.io
| | itm4n.github.io
2.7 parsecs away

Travel
| | DLL Hijacking is the first Windows privilege escalation technique I worked on as a junior pentester, with the IKEEXT service on Windows 7 (or Windows Server 2008 R2). Here, I'd like to discuss one of its variants - DLL Proxying - and provide a step-by-step guide for easily crafting a custom DLL wrapper in the context of a privilege escalation.
| | wsummerhill.github.io
2.6 parsecs away

Travel
| | Malware Development Introduction (aka Malware Dev 101), Part 1
| | openpunk.com
2.3 parsecs away

Travel
| | Recently I faced a rather intimidating problem while working on a project. The problem was fairly simple from an objective point of view: "How do I load a DLL into a process on startup?" Now you might be wondering, "Why not just patch the IAT (import address table) on the executable and force it to load your payload DLL?" Yes! That was my exact thoughts too, however for reasons I'll explain it wasn't that simple.
| | www.zerodayinitiative.com
21.4 parsecs away

Travel
| [AI summary] A vulnerability in NVIDIA Transformers4Rec allows remote code execution via deserialization of untrusted data, requiring user interaction to exploit.