DLL - HACKINGISCOOL

HACKINGISCOOL

DLL

A collection of 3 posts

CVE-2023-37250 POC

Unity Parsec TOCTOU PoC + writeup. GitHub - ewilded/CVE-2023-37250: PoCPoC. Contribute to ewilded/CVE-2023-37250 development by creating an account on GitHub.GitHubewilded

A case of DLL Side Loading from UNC via Windows environmental variable

About a month ago I decided to take a look at JetBrains TeamCity, as I wanted to learn more about CVE-2022-25263 (an authenticated OS Command Injection in the Agent Push functionality). Initially I just wanted to find the affected feature and test the mitigation put in place, eventually I ended

PE Import Table hijacking as a way of achieving persistence - or exploiting DLL side loading

Preface In this post I describe a simple trick I came up with recently - something which is definitely nothing new, but as I found it useful and haven't seen it elsewhere, I decided to write it up. What we want to achieve So - let's

No one really cares about cookies and neither do I