Advisories
2026
2 Advisories
04-01
CVE-2026-3991: Local Privilege Escalation in Symantec DLP Agent
02-17
CVE-2025-13176: Local Privilege Escalation in ESET Inspect EDR
2025
3 Advisories
11-25
CVE-2025-51682, CVE-2025-51683: Time Management Software SQLi-RCE
10-06
CVE-2025-10363: Unauthenticated RCE in Swiss Finance Software Topal
05-12
CVE-2025-47188: Mitel Phone Unauthenticated RCE
2019
1 Advisory
04-25
CVE-2019-10123: Logistics Sofware SQLi-RCE
Blog Posts
2026
3 posts
04-09
Slithering Through the Noise - Deep Dive into the VIPERTUNNEL Python Backdoor
03-13
Decrypting and Abusing Predefined BIOCs in Palo Alto Cortex XDR
02-24
Abusing Cortex XDR Live Terminal as a C2
2025
9 posts
12-01
CLRaptor: Hunting reflected assemblies with Velociraptor
10-10
Analyzing and Breaking Defender for Endpoint's Cloud Communication
09-19
Automation of VHDX Investigations
05-23
Attacking EDRs Part 4: Fuzzing Defender's Scanning and Emulation Engine (mpengine.dll)
02-24
Attacking EDRs Part 3: One Bug to Stop them all
02-17
Attacking EDRs Part 2: Driver Analysis Results
02-10
Attacking EDRs Part 1: Intro & Security Analysis of EDR Drivers
01-23
Tear Down The Castle - Part 2
01-19
Tear Down The Castle - Part 1