Posts by Andres Roldan

Andres is red team leader at Fluid Attacks with more than 20 years of experience in cybersecurity. He holds over 20 certifications in offensive security.

Photo by Oleksii Khodakivskiy on Unsplash

Andres Roldan

A CRTL Review

A Certified Red Team Lead (CRTL) Review

In this post we review the RTO-2 course and CRTL certification offered by Zero-Point Security.

Andres Roldan

DirectX/HyperV; An Offensive View

A Black Hat talk follow up

We will take a brief understanding at DirectX, a new attack surface on Hyper-V

Andres Roldan

AMSI Bypass Using Python

Cross-process memory patching with Python

We will take AMSI bypass to another level by using cross-process memory injection.

Andres Roldan

AMSI Bypass Using Memory Patching

Dynamic in-memory AMSI bypass

In this article we will be able to bypass AMSI using memory patching.

Andres Roldan

Sudo Heap Overflow CVE-2021-3156

Replicating CVE-2021-3156 with AFL

In this article we will be able to reproduce the bug described on CVE-2021-3156 using fuzzing.

Photo by Christina @ wocintechchat.com on Unsplash

Andres Roldan

HEVD: Local Privilege Escalation

Local Privilege Escalation

In this article we will be able to perform a Local Privilege Escalation using an exploit to HEVD.

Andres Roldan

HEVD: kASLR + SMEP Bypass

Bypassing OS protections

In this article we will defeat some protections using several techniques for exploting HackSys Extremely Vulnerable Driver

Andres Roldan

HEVD: Denial of Service

How to crash Windows

This article will be the first approach to start exploting HackSys Extremely Vulnerable Driver with a Denial of Service

Andres Roldan

Windows Kernel Exploitation: Lab

Getting in the deeps of the OS

This post will guide you to setup a lab environment for start exploiting Windows Kernel drivers.

Start your 21-day free trial

Discover the benefits of our Continuous Hacking solution, which hundreds of organizations are already enjoying.