Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
543Exploiting a Critical Spoofing Vulnerability in Windows CryptoAPI Windows Cryptographic issues Microsoft Tomer Peled Bug Bounty2023-01-252023-06-13
520Can%27t Wait to Shut You Down — Remote DoS Using Wininit.exe DoS MS-RPC Windows Microsoft Stiv Kupchik (@kupsul) Bug Bounty2023-01-312023-06-13
506Breaking Docker Named Pipes SYSTEMatically: Docker Desktop Privilege Escalation – Part 1 Local Privilege Escalation Windows Thick client Docker Eviatar Gerzi Bug Bounty2023-02-022023-06-13
487Post-Exploitation: Abusing the KeePass Plugin Cache Local Privilege escalation Windows KeePass Kevin Minacori Bug Bounty2023-02-072023-06-13
470LocalPotato - When Swapping The Context Leads You To SYSTEM Windows NTLM Local Privilege Escalation Microsoft Andrea Pierini (@decoder_it) Bug Bounty2023-02-102023-06-13
453LPE via StorSvc Local Privilege Escalation DLL Hijacking Microsoft (Windows) Antón Ortigueira (@antuache) Bug Bounty2023-02-132023-06-13
446Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute escape vulnerability (CVE-2022-44666) (0day). RCE Microsoft (Windows) j00sean (@j00sean) Bug Bounty2023-02-152023-06-13
440EoP via Arbitrary File Write/Overwite in Group Policy Client “gpsvc” – CVE-2022-37955 Local Privilege Escalation Microsoft (Windows) ap (@decoder_it) Bug Bounty2023-02-162023-06-13
396From CVE-2022-33679 to Unauthenticated Kerberoasting Kerberos MiTM Local Privilege Escalation Downgrade attack Microsoft (Windows) Trampas Howe (@trampashowe) Bug Bounty2023-02-252023-06-13
370Introducing Aladdin Insecure deserialization Microsoft (Windows) Lefteris Panos (@lefterispan) Bug Bounty2023-03-012023-06-13
300AD Security Research: Breaking Trust Transitivity Active Directory Privilege Escalation Microsoft (Windows) Charlie Clark (@exploitph) Bug Bounty2023-03-142023-06-13
287Bypassing PPL in Userland (again) Kernel hacking PPL bypass Microsoft (Windows) Clément Labro (@itm4n) Bug Bounty2023-03-172023-06-13
276Windows Installer EOP (CVE-2023-21800) Local Privilege Escalation Microsoft (Windows) Adrian Denkiewicz Bug Bounty2023-03-212023-06-13
242Protected Users: you thought you were safe uh? Active Directory Kerberos NTLM Internal pentest Microsoft (Windows) Aurélien CHALOT (@Defte_) Bug Bounty2023-03-312023-06-13
228Windows Task Scheduler Application, Version 19044.1706 Advisory Unquoted search path Local Privilege Escalation Microsoft (Windows) Ben Lincoln (@0x00C651E0) Bug Bounty2023-04-042023-06-13
221Escaping Adobe Sandbox: Exploiting an Integer Overflow in Microsoft Windows Crypto Provider Integer overflow Memory corruption Microsoft Michele Campa (@s1ckb017) Bug Bounty2023-04-062023-06-13
146Privilege Escalation in Microsoft Windows Local Privilege Escalation Microsoft (Windows) Tobias Neitzel (@qtc_de) Bug Bounty2023-04-282023-06-13
134CVE-2023-28231: RCE In The Microsoft Windows DHCPv6 Service RCE Buffer Overflow Memory corruption Microsoft (Windows) Guy Lederfein (@glederfein) Bug Bounty2023-05-022023-06-13
127The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component Out-of-bounds Read Memory corruption Microsoft (Windows) Bing Sun Bug Bounty2023-05-032023-06-13
105From One Vulnerability to Another: Outlook Patch Analysis Reveals Important Flaw in Windows API Privilege escalation NTLM Microsoft (Outlook) Ben Barnea (@nachoskrnl) Bug Bounty2023-05-102023-06-13
81DLL Hijacking Strikes Back: Exploiting Windows on ARM RDP Client (CVE-2023-24905) DLL Hijacking Local Privilege Escalation Microsoft (Windows) Dor Dali Bug Bounty2023-05-172023-06-13
52Exploring Three Remote Code Execution Vulnerabilities in RPC Runtime RCE MS-RPC Integer overflow Memory corruption Microsoft (Windows) Ben Barnea (@nachoskrnl) Bug Bounty2023-05-262023-06-13
36CVE-2023-24941: Microsoft Network File System Remote Code Execution RCE NFS Microsoft (Windows) Quinton Crist Bug Bounty2023-06-012023-06-13