Over the last couple of months, I have written a set of tutorials about building exploits that target the Windows stack. One of the primary goals of anyone writing an exploit is to modify the normal execution flow of Read more
When I started Win32 exploit development many years ago, my preferred debugger at the time was WinDbg (and some Olly). While Windbg is a great and fast debugger, I quickly figured out that some additional/external tools were required to Read more
Easter is still far away, so this is probably the right time to talk about ways to hunting for eggs (so you would be prepared when the easter bunny brings you another 0day vulnerability)
In the first parts Read more
I would like to wish you all a Happy New Year with
- good health
- lots of fun
- lots of time to do research and learn
- the strength to share your knowledge with others
- new Read more
From the MSExchangeTeam Blog :
It is my distinct pleasure to announce today the global availability of Exchange Server 2010. This has been an amazing journey from conception to launch, and the team has delivered an unprecedented line up Read more
Finally β¦ after spending a couple of weeks working on unicode and unicode exploits, Iβm glad and happy to be able to release this next article in my basic exploit writing series : writing exploits for stack based unicode Read more
I have received a very sad message this morning that str0ke (milw0rm) has passed away yesterday.
I sincerely hope this is some (bad and morbid) joke, but if itβs not then all I can say is that this is Read more
In an older blog post on Certificate Authorities, I have provided some information about the process to generate Exchange 2007 certificates.Β This process has slightly changed in Exchange 2010, and Johan Delimon (pro-exchange.be) has written an excellent article Read more
After having to recover a broken Windows Server based print server yesterday, I decided to write this small article on how to set up print server backups, and describe the simple process of recovering the print server after a Read more
Just a few moments ago, Neil Roiter has reported on SearchSecurity that The Metasploit Project (and the Metasploit Framework) has been acquired by Rapid7, a network vulnerability management vendor. This news has been confirmed by Rapid7 (see website) Read more
Subscribe
