Windows 20H2 changes
14 Nov 2020
Comparison of Windows 10 2004 and Windows 10 20H2 installations that might assist others who need to check off some of these things in their pre-deployment security review. The details...
edgegdi.dll for persistence
10 Oct 2020
Overview There’s a .dll which just about every process on my Windows machine is interested in called edgegdi.dll. Unfortunately, the dll: edgegdi.dll isn’t there (or anywhere on the system). You’ll...
Quick and Simple WiFi Testing with besside-ng
07 Sep 2020
I’ve been using Bettercap for a while now, and i love it but i saw a post on the weekend that reminded me the value in going back to look...
DLL Hijack for Cisco Anyconnect
23 Aug 2020
Note 1: the best place to learn a lot about dll hijacking is https://institute.sektor7.net; the main purpose of this post is to capture my notes while applying some of the...
Exploit Guard Mistakes
18 Jul 2020
This post details the mistakes I’ve made using and tuning Exploit Guard. They’re not meant to be interpreted as criticisms of the product; just thing’s I wish I’d realized earlier...
Exploit Guard vs Process (DLL) Injection
01 Jul 2020
In the previous post we evaluated Exploit Guard controls against a simple buffer overflow vulnerability in a test application. We used Matt Graeber’s Exploit Guard documentation as a guide. As...
Vulnserver Exploit vs Windows Defender Exploit Guard
27 Jun 2020
I’ve taken notes for exploiting Stephen Bradshaws ‘vulnserver’ in a previous post. I saved those here. This post evaluates the protection Windows Defender Exploit Guard can offer a vulnerable application....
Deploying Azure Functions
22 Jun 2020
We’re going to try to move the main random password code from the previous blog post to Azure ‘Functions’ - the Azure serverless offering. Fundamentals: We define a trigger for...
Deploying Azure Web Services Manually
20 Jun 2020
Looking into how we’d deploy, scale and secure a web service on Azure. Starting right at the very basics - a hand jammed basic web service deployed from inside VS...
Signing .jar files with an existing certificate on Windows
11 Jun 2020
Install JDK Jump into the JDK binary folder cd C:\Program Files\Java\jdk-14.0.1\bin Create a Java Signing Keystore with your existing .p12: keytool -importkeystore -srckeystore c:\jarfiles\duff.p12 -srcstoretype pkcs12 -destkeystore c:\jarfiles\duff.jks -deststoretype JKS...
Older Posts