Photo by Cookie the Pom on Unsplash

My Favorite Password: '123456'

You could be a victim of Credential Stuffing


Author: Felipe Ruiz

Category: techniques

Tags: credential,  password,  web,  application,  cybersecurity,  business

I wrote this post to give you an overview of the Credential Stuffing attack and some short...



Photo by Christina @ wocintechchat.com on Unsplash

HEVD: Local Privilege Escalation

Local Privilege Escalation


Author: Andres Roldan

Category: attacks

Tags: osee,  training,  exploit,  windows,  kernel,  hevd

In this article we will be able to perform a Local Privilege Escalation using an exploit to HEVD



Photo by Michael Dziedzic on Unsplash

HEVD: kASLR + SMEP Bypass

Bypassing OS protections


Author: Andres Roldan

Category: attacks

Tags: osee,  training,  exploit,  windows,  kernel,  hevd

In this article we will defeat some protections using several techniques for exploting HackSys...



Photo by Chaozzy Lin on Unsplash

HEVD: Denial of Service

How to crash Windows


Author: Andres Roldan

Category: attacks

Tags: osee,  training,  exploit,  windows,  kernel,  hevd

This article will be the first approach to start exploting HackSys Extremely Vulnerable Driver...



Photo by Wesley Caribe on Unsplash

Windows Kernel Exploitation: Lab

Getting in the deeps of the OS


Author: Andres Roldan

Category: attacks

Tags: osee,  training,  exploit,  windows,  kernel,  hevd

This post will guide you to setup a lab environment for start exploiting Windows Kernel drivers



Photo by Clovis WOOD on Unsplash

A Recent OSCE in Our Team

A short interview with Andres Roldan


Author: Felipe Ruiz

Category: interview

Tags: interview,  red team,  osce,  training,  exploit,  software

We spoke with Andres Roldan, our Offensive Team Leader, who recently obtained his OSCE...



Photo by Syed Ali on Unsplash

TRUN: Exploiting with ROP

Exploiting Vulnserver with ROP


Author: Andres Roldan

Category: attacks

Tags: osee,  training,  exploit,  vulnserver

This post will show how to create a complete, functional exploit creating a complex shellcode using ROP



Photo by Michael Dziedzic on Unsplash

Bypassing DEP with ROP

Running instructions by reference


Author: Andres Roldan

Category: attacks

Tags: osee,  training,  exploit

This post will show how bypass the Data Execution Prevention security mechanism using...



Photo by Chris Panas on Unsplash

Understanding DEP

Let's protect the stack


Author: Andres Roldan

Category: attacks

Tags: osee,  training,  exploit

This post will show how the Data Execution Prevention (DEP) security mechanism works and what...



Photo by Joshua Earle on Unsplash

A Journey to OSCE

A personal OSCE experience


Author: Andres Roldan

Category: attacks

Tags: osce,  training,  exploit

This post will describe the journey that I took to earn the OSCE certification.



Photo by James Pond on Unsplash

Schrems Trampled on the Shield

The EU-US Privacy Shield agreement is now invalid


Author: Felipe Ruiz

Category: politics

Tags: policies,  cybersecurity,  social,  information,  mistake,  business

This blog post might give you a better understanding of what has been achieved by Max Schrems...



Photo by Lucas Benjamin on Unsplash

Tribe of Hackers Red Team 1.0

Learning from the Red Team Expert Marcus J. Carey


Author: Felipe Ruiz

Category: opinions

Tags: cybersecurity,  red team,  hacking,  pentesting,  ethical hacking,  blue team

This post is based on the book 'Tribe of Hackers Red Team' by Carey and Jin. Here we share an...



< 1 2 3 4 5 6 7 8 9 10 11 12 13 >

OWASP logo

Corporate member of The OWASP Foundation

Clutch Review

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.

Service status - Terms of Use - Privacy Policy - Cookie Policy