The ongoing friction between a security researcher designated as Nightmare Eclipse and Microsoft has culminated in another high-profile zero-day disclosure. Specifically, a weaponized exploit named RoguePlanet has materialized online. This utility targets Microsoft Defender...
The Emergence of the MiniPlasma Threat A perilous zero-day vulnerability designated as MiniPlasma is currently enduring active exploitation within the Windows ecosystem. Consequently, this severe architectural defect allows local adversaries to instantly inherit absolute...
A novel exploitation framework designed to escalate execution privileges within the Windows environment, designated as Eris, has emerged in the public domain. The architect of the project asserts that the methodology facilitates the spawning...
A vulnerability, lying dormant within the Linux architecture for nearly eight years, empowers a pedestrian system user to usurp absolute dominion over a server. The affliction resides within the AppArmor security apparatus, a mechanism...
PrivHound Local Privilege Escalation, as a Graph. A BloodHound OpenGraph collector that models Windows local privilege escalation as interconnected attack paths not a wall of text. For a long time, BloodHound has proven that...
WebClientRelayUp This is basically an universal no-fix local privilege escalation in domain-joined windows workstations in default configuration. Tested on Windows 10 and 11 This project is based on DavRelayUp. The main difference is that I...
A critical vulnerability has been unearthed within the Linux kernel, requiring only a fleeting temporal window for exploitation before the kernel erroneously interacts with deallocated memory. This is no longer a mere theoretical abstraction;...
MSI Analyzer This Python script for Linux can analyze Microsoft Windows *.msi Installer files and point out potential vulnerabilities. It was developed by Michael Baer (@derbaer0) in the SEC Consult Vulnerability Lab. Currently, it...
