-
Hello, I'm trying the userland/web exploit with a BE85, what binary did you get the ROP gadget from? Is it from nvrammanager itself or a shared library?
_Originally posted by @VsnGamer in https://g…
-
Since `objtool` already disassembles the (x86) kernel image at build time, it would be nice to add a ROP gadget detector as a way to warn about possible constructs or compiler implementations that cou…
-
In [this commit](https://github.com/mupen64plus/mupen64plus-core/commit/5340dafcc0f5e8284057ab931dd5c66222d3d49e), there was a fix for an overflow in RSP DMAs, but none of the other missing bounds che…
-
[mona.py](https://www.corelan.be/index.php/2011/07/14/mona-py-the-manual/) is a handy python script from [corelan](http://corelan.be), designed to assist in exploits development. I don't know how much…
-
-
Apologies for my general ignorance in asking this question, but does this exploit exist, and if so, is it even exploitable, on ARM based Deco devices like the M9 Plus?
-
### Affected section of the guide
Windows 11 Hosts/VMs
### Short description
By default, Windows 11 will have `Hardware-enforced Stack Protection` on, and this prevents an unvetted/whitelisted (by …
-
This is item 4 in https://github.com/lkrg-org/lkrg/issues/215#issuecomment-1195744061 and alternative to #219:
Unfortunately, exploits can currently make us keep our `off` flag set for too long (ov…
-
Hi,
Looking through analysis results would it please be possible to add in the following hooks in the IE hooks (https://github.com/cuckoosandbox/monitor/blob/master/sigs/iexplore.rst)?
- JsEval
- COl…
-
Hello there,
Im trying to reproduce this exploit but it is not really working. I tried it using Debian and Ubuntu with old kernel Versions (5.10.0 and 5.10.0) but I can't exploit the system.
I …