DLL shared sections have long been infamous for introducing security problems. A few months ago I decided to take a look if one can still find applications that use PE modules with shared sections in an insecure way (or using them at all). Today I'm releasing research notes, some tools and a demo of a Cygwin local privilege escalation (it's already fixed).
Read more...
Links / Blogs
- → dragonsector.pl
- → vexillium.org
- Security/Hacking:
- Reverse Eng./Low-Level:
- Programming/Code:
Posts
- Question for my readers - what should I use to write a book?,
- Battle bot competition begins,
- Next stream: Arcane Sector Online tasks from Dragon CTF,
- Teaser Dragon CTF 2018 starts tomorrow!,
- GSGC 2018: Results,
- Gynvael's Summer GameDev Challenge 2018,
- Security PWNing 2018: 10 grants from Google,
- Slides from my ZIP talk in Ingolstadt,
- ZIP file format talk at Technische Hochschule Ingolstadt,
- Livestream: 28.03 8PM CEST - Soundcard networking,
- → see all posts on main page
Add a comment: