Jan 3, 2022 | CVE, exploit, Vulnerability
While doing my preperation for the OSCE i found an exploit for the coolpalyer+ version 2.19.1 from 2009. I decided to check this vulnerability in the recent software version (2.19.6) on my Windows 10 machine. The following post descripes the exploit development. 1....
Jan 3, 2022 | exploit, HowTo
This is a short usage guide which should explain my simple wrapper for the spike fuzzer, which you can find here. For this example i used the well known vulnserver;-) 0x01 Determine possible commands A simple nc && HELP command revealing all possible commands....
May 29, 2019 | exploit, Security Advices & Tipps, Vulnerability
During my last assessment i discovered a strange behaviour of Microsoft’s SmartScreen feature.In general this security feature should block the execution of untrusted downloads from the internet (more details). In fact it’s blocking the execution if you...
Jun 19, 2018 | exploit, HowTo, Techniques
Welcome to my next blog post. Today i want to show you some basic pentesting stuff. We will manually backdooring a PE-File, in this case the putty client. I used the following software setup: Windows 10 Pro 32 Bit Putty Stud_PE Immunity Debugger Before we are getting...
