I gave a short talk on red teaming at IT-SeCX 2018.
You can find the slides here: Flying under the radar - Red Teaming Tactics
Donnerstag, 1. November 2018
Dienstag, 12. Juni 2018
Pentester's Windows NTFS tricks collection
In 2018 I found a Microsoft Windows Elevation of Privileges vulnerability (CVE-2018-1036). Later I published a blog post on it and described some other NTFS tricks.
You can find the blogpost here: Pentester's Windows NTFS tricks collection
You can find the blogpost here: Pentester's Windows NTFS tricks collection
Donnerstag, 17. Mai 2018
Finding security vulnerabilities with modern fuzzing techniques
I presented a talk on the topic of fuzzing at RuhrSec 2018. It describes the basics of fuzzing with AFL and WinAFL.
You can find the Video here: Video
At minute 42:16 you can see a short demo of a fuzzer which I developed at SEC Consult. Since I quit my job at SEC Consult the fuzzer was unfortunately never released to the public.
You can find the Video here: Video
At minute 42:16 you can see a short demo of a fuzzer which I developed at SEC Consult. Since I quit my job at SEC Consult the fuzzer was unfortunately never released to the public.
Donnerstag, 26. April 2018
Cyber Security Challenge Austria CTF Tips & Tricks
The Cyber Security Challenge Austria is a competition where students and interested people can solve challenges to compete with each other. It's a great possibility to learn something new and meet people with similar interests. In 2018 I wrote a short CTF (Capture-the-Flag) guide how to get started for beginners.
You can find it here: Cyber Security Challenge Austria CTF Tips & Tricks
You can find it here: Cyber Security Challenge Austria CTF Tips & Tricks
Abonnieren
Posts (Atom)