Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3266One Click to Compromise -- Fun With ClickOnce Deployment Manifests NTLMv2 hash disclosure One-click execution of arbitrary .Net assemblies Windows Microsoft Dave Cossa (@G0ldenGunSec) Bug Bounty2020-07-302023-06-13
2115A journey from XML External Entity (XXE) to NTLM hashes! XXE NA Shubham Chaskar (@chaskar_shubham) Bug Bounty2021-10-282023-06-13
2058GoSecure Investigates Abusing Windows Server Update Services (WSUS) to Enable NTLM Relaying Attacks Local Privilege Escalation Microsoft Romain Carnus Bug Bounty2021-11-222023-06-13
470LocalPotato - When Swapping The Context Leads You To SYSTEM Windows NTLM Local Privilege Escalation Microsoft Andrea Pierini (@decoder_it) Bug Bounty2023-02-102023-06-13
305Exploiting CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability Privilege escalation NTLM Microsoft (Outlook) Dominic Chell (@domchell) Bug Bounty2023-03-142023-06-13
242Protected Users: you thought you were safe uh? Active Directory Kerberos NTLM Internal pentest Microsoft (Windows) Aurélien CHALOT (@Defte_) Bug Bounty2023-03-312023-06-13
105From One Vulnerability to Another: Outlook Patch Analysis Reveals Important Flaw in Windows API Privilege escalation NTLM Microsoft (Outlook) Ben Barnea (@nachoskrnl) Bug Bounty2023-05-102023-06-13