Collaborate Disseminate
From what I know, DLL are loaded in this order (simplified) :
Is present in memory ?
KnownDLLs
Curent Application Dir
System32 directory
Etc (not in the question scope)
Step to reproduce the behavior :
Download Process Explorer (Sysinte… Continue reading Why are some DLL not present in KnownDLLs not loaded from current application directory [migrated]
Is it possible to filter CVEs by affected platform/OS?
Some sources do provide this, like exploit-db, but the main vulnerability source NVD, National Vulnerability Database, doesn’t seem to have such category or filter for neither CVEs or … Continue reading Filter CVEs by affected OS
We are looking into reviewing our organization OS/DB hardening checklist (done by predecessor). We’re aware that there are various benchmarks out there like CIS & STIG to guide on that, and the current checklist is rather a short list … Continue reading OS/DB Hardening Checklist Drafting Process
It seems to me Kicksecure Live Mode is amnesic just like Tails and it enables you to use Whonix so I was wondering if I am wrong or what are the pros and cons of each? Kicksecure Live Mode combined with Whonix seems superior.
Continue reading What are the pros and cons of using Tails vs Kicksecure Live Mode Whonix
With OS detection enabled I noticed that the device fingerprints is running something entirely wrong. Is there another tool that I can use that can verify since something looks odd?
Continue reading What tool can I use to verify the output from Nmap? [closed]
As far as I understand, usually the game anti-cheat runs in another process from the game client. This makes it obvious to try to simulate anti-cheat, for example, to replace it with your program, which interacts with the game client and t… Continue reading How does anti-cheat prevent mocking itself?
Researchers have discovered malware that “can hijack a computer’s boot process even when Secure Boot and other advanced protections are enabled and running on fully updated versions of Windows.”
Dubbed BlackLotus, the malware is what’s known as a UEFI bootkit. These sophisticated pieces of malware target the UEFI—short for Unified Extensible Firmware Interface—the low-level and complex chain of firmware responsible for booting up virtually every modern computer. As the mechanism that bridges a PC’s device firmware with its operating system, the UEFI is an OS in its own right. It’s located in an …
Continue reading BlackLotus Malware Hijacks Windows Secure Boot Process
I assume most of the security issues with old software are
that scripts or .exe will run against the bugs in the software.
and that the firmware on the device OS bugs aren’t patched.
Or some parts of the machine are accessible to the inte… Continue reading Where to find updated best practice on using unmaintained or legacy software on a patched OS?
We are working on the task to exploit PintOS system in which we had to create stack, implement system calls to run through the stack and now we have been given the task to exploit the system calls using shellshock (or whatever we want), to… Continue reading Exploiting system calls to gain root access (C) [closed]
The risks of supply chain attacks on software libraries is well documented, however, I have not seen much on OS packages/dependencies. How important is it to both 1) pin OS dependencies (apt,rpm,etc.) and 2) host them in private repositori… Continue reading Supply chain risks for OS packages