Recent News

LetMeHID! Red Teaming with P4wnP1 A.L.O.A.

Hi! Today I'm publishing a little tool I created some months ago. In these days…

My ysoserial fork

Hi! During the years many people ask to me the code I used to generate…

Java Deserialization Scanner 0.6 is out!

Hi! I just released version 0.6 of Java Deserialization Scanner! The first improvement is the…

CVE-2020-2771 – Heap-based buffer overflow in Solaris whodo and w commands

A difficult to exploit heap-based buffer overflow in setuid root whodo and w binaries distributed…

CVE-2020-2851 – Stack-based buffer overflow in CDE libDtSvc

A difficult to exploit stack-based buffer overflow in the _DtCreateDtDirs() function in the Common Desktop…

CVE-2020-2944 – Local privilege escalation via CDE sdtcm_convert

Since I moved from Solaris 11 to audit Solaris 10, my weekend project has become…

Brida 0.4 is out!

After quite a lot of hours of work, Brida 0.4 is finally out! Brida 0.4…

CVE-2020-7247 exploit: LPE and RCE in OpenBSD’s OpenSMTPD

I've written an exploit for the local privilege escalation and remote command execution vulnerability in…

• 1
• 2
• 3
• 4
• …
• 10
• »