DLL shared sections have long been infamous for introducing security problems. A few months ago I decided to take a look if one can still find applications that use PE modules with shared sections in an insecure way (or using them at all). Today I'm releasing research notes, some tools and a demo of a Cygwin local privilege escalation (it's already fixed).
Read more...
Links / Blogs
- → dragonsector.pl
- → vexillium.org
- Security/Hacking:
- Reverse Eng./Low-Level:
- Programming/Code:
Posts
- Gynvael's Summer GameDev Challenge 2018,
- Security PWNing 2018: 10 grants from Google,
- Slides from my ZIP talk in Ingolstadt,
- ZIP file format talk at Technische Hochschule Ingolstadt,
- Livestream: 28.03 8PM CEST - Soundcard networking,
- PWNing 2018: Looking for sponsors,
- GWGC 2017/18: Results,
- Surprising CTF task solution using php://filter,
- GWGC 2017/18: Vote for Community Choice Award,
- Python 3 BrokenPipeError woes (debugging notes),
- → see all posts on main page
Add a comment: