Photo by Pierre Binet on Unsplash

Vulnserver Reverse Engineering

The devil is in the details


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  vulnerability,  exploit

This post will show how use reverse engineering techniques and tools to find vulnerabilities on...



Photo by Philipp Katzenberger on Unsplash

KSTET: DLL Side-Loading Exploit

Sideloading exploiting


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  exploit

This post will show how to exploit the Vulnserver KSTET command loading the payload from an...



Photo by Tomas Sobek on Unsplash

Exploiting QuickZip 4.x

Exploit-Fu


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnerability,  training,  exploit

This post will show how to build our version of an exploit for QuickZip 4.x SEH overwrite.



Photo by Dil on Unsplash

Backdooring PuTTY

Trust no one


Author: Andres Roldan

Category: attacks

Tags: osce,  backdoor,  training,  exploit

This article will show a way of creating a backdoor that will be injected into PuTTY, a widely...



Photo by visuals on Unsplash

Online Voting for a New President?

The trouble with OmniBallot and other voting platforms


Author: Felipe Ruiz

Category: politics

Tags: security,  cybersecurity,  software,  web,  vulnerability,  risk

In this post, we show you the exposed vulnerabilities of one of the many online voting options...



Photo by Kevin Ku on Unsplash

LTER: Overcoming Bad Chars

Bad chars everywhere


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  exploit

This post will show how to exploit the Vulnserver LTER command on where we will need to bypass...



Photo by Ganapathy Kumar on Unsplash

KSTET: Multistage Exploiting

Exploiting in stages


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  exploit

This post will show how to exploit the Vulnserver KSTET command using a socket reuse method.



Photo by Roberto Gomez Angel on Unsplash

GMON Exploiting: Harnessing SEH

Exceptions are good


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  exploit

This post will show how to exploit the Vulnserver GMON command using Structured Exception...



Photo by Florian Klauer on Unsplash

GTER Exploit: Reusing Socket Stack

Every byte counts


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  exploit

In this post, we will use an alternative way of exploiting Vulnserver GTER command.



Photo by Annie Spratt on Unsplash

Vulnserver GTER Exploitation

Hunting eggs


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  exploit

This post will describe the steps taken to exploit the Vulnserver GTER command, using a...



Photo by David Rangel on Unsplash

Vulnserver TRUN Exploitation

From zero to shell


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  exploit

This post will describe the steps taken to exploit the Vulnserver TRUN command using a direct...



Photo by Gary Bendig on Unsplash

A New Red Team Expert

A short interview with Daniel Yepes


Author: Felipe Ruiz

Category: interview

Tags: interview,  red-team,  windows,  software,  cybersecurity,  security

We talked to Daniel Yepes, a colleague who recently achieved his certificate as a Red Team...



< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 >

OWASP logo

Corporate member of The OWASP Foundation

Clutch Review
Service status - Terms of Use - Privacy Policy - Cookie Policy

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.