Mar 7, 2023
Post comments count0
Post likes count1
Microspeak: Baseball card
A one-page summary, and this time we mean it.
Showing tag results for Other
Feb 28, 2023
Post comments count5
Post likes count2
Once you give away the farm, you can’t take it back: Recovering from a rogue administrator
Who knows what happened to it while you weren't looking.
Feb 21, 2023
Post comments count2
Post likes count3
Microspeak: Light reading (ironic)
Just a fun diversion.
Feb 6, 2023
Post comments count9
Post likes count2
It rather involved being on the other side of this airtight hatchway: Reading the user’s saved passwords
Only the user can read their own saved passwords, so you must already have gained total control over the user.
Jan 18, 2023
Post comments count4
Post likes count2
It rather involved being on the other side of this airtight hatchway: Attacking a user by modifying that user’s files
You're just attacking yourself.
Jan 17, 2023
Post comments count8
Post likes count1
A trio of dubious denial-of-service security vulnerability reports which are just style points piled on top of nothing
You could have accomplished the same thing with a garbage file.
Jan 13, 2023
Post comments count18
Post likes count4
Adventures in application compatibility: Querying for an internal interface
Reaching in and fiddling the internal knobs.
Jan 10, 2023
Post comments count10
Post likes count1
It rather involved being on the other side of this airtight hatchway: Administrator attacking a domain account on the local system
You don't gain control over any other systems.
Jan 5, 2023
Post comments count0
Post likes count1
How can I force a user to have a specific SID prefix, so that they go into a particular group?
The prefix doesn't define group membership.
Jan 3, 2023
Post comments count4
Post likes count1
It rather involved being on the other side of this airtight hatchway: Gaining code execution from a Trojan horse
You already have code execution, so it's not surprising that you can gain code execution.