2021-04-26 11:47:31

QNAP NAS HBS 3 Hybrid Backup Syn Hard-Coded Credentials QLocker Ransomware is using this vulnerability to encrypt files of QNAP customers.

2021-04-21 11:30:20

Write-up of CVE-2021-30481 Source engine remote code execution via game invites

2021-04-17 11:16:55

Airstrike Attack - FDE bypass and EoP on domain joined Windows workstations (CVE-2021-28316)

2021-04-14 10:50:38

Remote exploitation of a man-in-the-disk vulnerability in WhatsApp (CVE-2021-24027)

2021-04-05 14:05:28

Exploit of CVE-2020-16040 Google Chrome <= 87.0.4280.88 vulnerability

2021-03-18 20:09:34

Zoom Unintended Screen Sharing Vulnerability POC:

2021-01-26 20:29:34

heap overflow vulnerability in Sudo leads attackers to gain root privileges. Sudo is affected by this vulnerability for ten years (since July 2011). This vulnerability has been found by Qualys Research Team. Details are here:

2021-01-24 10:27:23

Making Clouds Rain :: Remote Code Execution in Microsoft Office 365 This post is a story on how I found and exploited CVE-2020-16875, a remote code execution vulnerability in Exchange Online and bypassed two different patches for the vulnerability.