All Posts By

Nick Landers

ExploitsRed TeamReversing
October 9, 2019

CVE-2019-10617 – AtherosSvc Registry LPE

Discovery In DbgView one day, I noticed repeated noisy output from a particular process. The…
Read More
CodeRed Team
June 4, 2019

Re-Animating ActivitySurrogateSelector

In 2017, James Forshaw released a DotNet deserialization gadget which abuses the ActivitySurrogateSelector class from…
Read More
CodePenetration Testing
August 23, 2017

sRDI – Shellcode Reflective DLL Injection

During our first offering of "Dark Side Ops II - Adversary Simulation" at Black Hat…
Read More
Penetration Testing
December 4, 2015

Malicious Outlook Rules

Occasionally, we come across interesting scenarios that require thinking outside the box. For example: What if…
Read More
Penetration TestingPowerShell
October 2, 2015

Hashdump without the DC using DCSync (because we all wanted it)

Update: It was brought to our attention that we mistakenly forgot to credit a few…
Read More
August 12, 2015

Exploiting MS15-076 (CVE-2015-2370)

A few weeks ago (July 14, 2015), Microsoft had a busy patch Tuesday fixing quite a…
Read More