Open decalage2 opened 4 years ago
Also shellcode injection using callbacks:
More resources about Process/DLL injection:
Possibly a few more keywords: https://twitter.com/EmericNasi/status/1405911923556761609
PoC to resolve dynamically SSNs for syscalling in VBA: https://twitter.com/TheXC3LL/status/1566575977219645452 https://gist.github.com/X-C3LL/ba905b10163f769061ce619f26c138b8
getting Ring 0 using VBA by exploiting a vulnerable device driver (CVE-2018-6606) https://twitter.com/0xDISREL/status/1584546482245419009 https://disrel.com/posts/Ring0VBA-Getting-Ring0-Using-a-Goddamn-Word-Document/ https://github.com/DISREL/Ring0VBA
See https://twitter.com/NirYeho/status/1198938529725865984