From context_handle to type confusion
A Type Confusion Vulnerability Pattern in Windows RPC Servers
A trick, the story of CVE-2024-26230
A trick, the story of CVE-2024-26230 Author: k0shl of Cyber Kunlun
Isolate me from sandbox - Explore elevation of privilege of CNG Key Isolation
Isolate me from sandbox - Explore elevation of privilege of CNG Key Isolation Author: k0shl of Cyber Kunlun
Break me out of sandbox in old pipe - CVE-2022-22715 Windows Dirty Pipe
Break me out of sandbox in old pipe - CVE-2022-22715 Windows Dirty Pipe Author: k0shl of Cyber Kunlun
The Story Of CVE-2021-1648
The Story Of CVE-2021-1648
StorSvc writeup and introduction about my analysis script
StorSvc writeup and introduction about my analysis script
Segment Heap的简单分析和Windbg Extension
Author: k0shl of 360 Vulcan Team
VSFTPD v2.3.4 后门分析
作者:k0shl 转载请注明出处:http://whereisk0shl.top
ProFTPD 1.3.3c 后门分析
作者:k0shl 转载请注明出处:https://whereisk0shl.top
LShell <= 0.9.15 远程代码执行漏洞
作者:k0shl 转载请注明出处:http://whereisk0shl.top
JCG 路由命令执行漏洞分析
作者:k0shl 转载请注明出处:https://whereisk0shl.top 一年后重温这个漏洞,突然发现这个JCG漏洞时在某云提交的,好怀念那段时光…
HTML Help Workshop .SEH 本地代码执行漏洞
作者:k0shl 转载请注明出处:https://whereisk0shl.top
[质量局!!]HITB GSEC CTF Win Pwn解题全记录之babystack
作者:k0shl 转载请注明出处,作者博客:https://whereisk0shl.top
A simple story of DsSvc, "Live and Die"
Author: k0shl of 360 Vulcan Team
[博客搬家啦!] CVE-2011-3478 Symantec pcAnywhere 远程代码执行漏洞
作者:k0shl 转载请注明出处:http://whereisk0shl.top
[CVE-2016-0111] IE SetAttributeStringAndPointer 释放后重用漏洞分析 [MS16-023]
作者:k0shl 转载请注明出处:https://whereisk0shl.top
[CVE-2013-0658] Schneider Electric Accutech 工控服务堆溢出漏洞分析
作者:k0shl 转载请注明出处:https://whereisk0shl.top
Microsoft Hardlink缓解机制简单分析
Author: k0shl of 360 Vulcan Team
DfMarshal系列漏洞CVE-2018-8550调试记录
Author: k0shl of 360 Vulcan Team
写在98篇漏洞分析之后---2019.03.09
作者:k0shl