House of Banana

Posted on 2024-10-21

Hijack execution flow by abusing _rtld_global in ld.so

HTB Writeup – Chemistry

Posted on 2024-10-21

Deserialization for pymatgen & Directory Traversal on aiohttp

Posted on 2024-10-13

Android reversing & Dump sessions from SolarPutty

Posted on 2024-10-12

Defeat the pointer guard and hijack execution flow.

Posted on 2024-10-10

A systme error message leading to shell

Posted on 2024-10-06

LFI, JWT Forgery, SQLi, Crontab abuse, Mercurial hook, Rsync privesc

Posted on 2024-09-29

Windows red teamming machine for beginners.

Posted on 2024-09-24

High level GLIBC I/O operation exploit: Largebin Attack + FSOP

Posted on 2024-09-22

XSS + RCE for PrestaShop & exploit SSTI on ChangeDetection.io

Posted on 2024-09-18

ORW ROP chain with magic gadgets to pwn a Sandbox