RCE Security

RCE Security

Reverse Engineering sometimes results in Remote Code Execution

Menu

  • Vulnerabilities
  • References
  • Disclosure Policy
  • About:Me
  • Imprint/Data Protection Policy

SLAE Course and Exam Review

SLAE Course and Exam Review

As you may have noticed, I have posted a couple of articles about my SecurityTube Linux Assembly Expert exam during the last months. Now that I have successfully completed the course, I just want to share my thoughts about it for those of you

MrTuxracer June 27, 2016June 27, 2016 Certifications No Comments Read more

SLAE: Custom Crypter (Linux/x86)

SLAE: Custom Crypter (Linux/x86)

Do you want to fool antivirus software? When you look through hacking forums for a solution to this, you will likely encounter the term “crypter”. You will also find this tool in the arsenal of every advanced penetration tester and it

MrTuxracer April 28, 2016April 28, 2016 SLAE 2 Comments Read more

SLAE: Polymorphic Shellcodes (Linux/x86)

SLAE: Polymorphic Shellcodes (Linux/x86)

Question: How can signature-based Intrusion Detection systems be defeated? Answer: Using polymorphic shellcodes! This might sound really crazy and cyber, but it has nothing to do with inventing fancy new hacking techniques, it’s rather about puzzling. By replacing assembly instructions with other assembly instructions

MrTuxracer April 12, 2016April 15, 2016 SLAE No Comments Read more

Ubiquiti Bug Bounty: UniFi v3.2.10 Generic CSRF Protection Bypass

Ubiquiti Bug Bounty: UniFi v3.2.10 Generic CSRF Protection Bypass

Better late than never. This article will give you some insights about my discovered generic Cross-Site Request Forgery Protection Bypass in Ubiquiti’s UniFi v3.2.10 and below, as published some time earlier this year on HackerOne. This vulnerability basically allows an attacker to compromise

MrTuxracer February 23, 2016March 6, 2016 Bug Bounties, Vulnerabilities No Comments Read more

BSidesHH: Ambiguity is Insecurity

BSidesHH: Ambiguity is Insecurity

Hamburg – just about one year ago, the first BSides was organized by Arron and Caroline. Now, one year later on 28th December, just after a relaxed Christmas time, they invited again –  for the next #BSidesHH. It was powered by the great

MrTuxracer December 29, 2015December 29, 2015 Playground No Comments Read more

CVE-2015-5956: Bypassing the TYPO3 Core XSS Filter

CVE-2015-5956: Bypassing the TYPO3 Core XSS Filter

TYPO3 is the most widely used enterprise content management system with more than 500.000 installations. I have recently discovered a Non-Persistent Cross-Site Scripting vulnerability in its core and disclosed the details of the vulnerability publicly as CVE-2015-5956. This blog article should give you

MrTuxracer September 16, 2015September 16, 2015 Exploits, Vulnerabilities 1 Comment Read more

CVE-2014-7216: A Journey Through Yahoo’s Bug Bounty Program

CVE-2014-7216: A Journey Through Yahoo’s Bug Bounty Program

I have published another security advisory about a vulnerability, which I have “recently” reported to Yahoo! via their Bug-Bounty program hosted by HackerOne. So this blog post is about the technical details of the CVE-2014-7216 (which is not very thrilling), but

MrTuxracer September 3, 2015September 3, 2015 Bug Bounties, Vulnerabilities 9 Comments Read more

SLAE: Dissecting Msfvenom Payloads (Linux/x86)

SLAE: Dissecting Msfvenom Payloads (Linux/x86)

One very common tool among penetration testers is Metasploit, which includes a lot of nice exploits and payloads. The 5th assignment of the SecurityTube Linux Assembly Expert certification is about Metasploit shellcode analyses for Linux/x86 target systems. The task is to

MrTuxracer August 13, 2015April 28, 2016 Certifications, SLAE No Comments Read more

Modern Lords of War

Modern Lords of War

The Wassenaar Arrangement. Maybe you have already heard about that. With the implementation of this multilateral export control regime on conventional arms, dual-use goods and technologies, security researchers like me could be called lords of war and weapons dealers now – sounds cool, but unfortunately it’s

MrTuxracer July 21, 2015July 29, 2015 Security News No Comments Read more

SLAE: Custom RBIX Shellcode Encoder/Decoder

SLAE: Custom RBIX Shellcode Encoder/Decoder

Anti-Virus and Intrusion Detection Systems could become really nasty during a penetration test. They are often responsible for unstable or ineffective exploit payloads, system lock-downs or even angry penetration testers 😉 . The following article is about a simple AV and IDS

MrTuxracer January 18, 2015April 28, 2016 Certifications, SLAE No Comments Read more
  • « Previous
  • Next »

Categories

  • Bug Bounties
  • Certifications
  • Conferences
  • CTFs
  • Exploits
  • Papers
  • Playground
  • RCE
  • Reversing
  • Security News
  • Site News
  • SLAE
  • Tutorials
  • Vulnerabilities

Tags

0-day 0day advisory assembly BSidesHH buffer overflow bug bounty bypass csrf CVE-2014-2206 eip esp exam exploit hacking hackme IDA ignorance inshell LFI linux local Metasploit nmap Off-Topic PoC privileges escalation python RCE remote reporting ret ROP SafeSEH shellcode SLAE SQLi sqlmap SSRF stack surveillance trunk vlan WinALL XSS

Archives

  • June 2018
  • May 2018
  • November 2017
  • October 2017
  • August 2017
  • March 2017
  • January 2017
  • December 2016
  • September 2016
  • June 2016
  • April 2016
  • February 2016
  • December 2015
  • September 2015
  • August 2015
  • July 2015
  • January 2015
  • December 2014
  • November 2014
  • August 2014
  • July 2014
  • May 2014
  • April 2014
  • March 2014
  • February 2014
  • January 2014
  • November 2013
  • October 2013
  • September 2013
  • August 2013
  • July 2013
  • June 2013
  • May 2013
  • April 2013
  • March 2013
  • February 2013
  • January 2013
  • December 2012
  • November 2012
  • October 2012
  • September 2012
  • August 2012
  • July 2012
  • June 2012
  • May 2012
  • April 2012
  • March 2012
  • February 2012
  • January 2012
  • December 2011
  • November 2011

Follow Me

Copyright © 2019 RCE Security. Powered by WordPress. Theme: Spacious by ThemeGrill.