Lolware
    • github
  • About
  • Contact

Blog

view all tags
  • powershellregistry

    Using Powershell to manage binary registry keys

    Getting and setting REG_BINARY keys

    April 11, 20251 mins
  • openRTRCE

    openRT Vulnerabilities

    A review of the openRT appliance as we walkthrough exploiting an RCE and then privilege elevation

    February 20, 20254 mins
  • InTuneWindows 11Firmware Protection

    Windows 11 - Enable "Firmware Protection" by InTune or otherwise

    Using InTune or otherwise, you may struggle to enable Microsoft's feature "Firmware Protection"

    January 05, 20241 mins
  • CTAdvisorCertificate Transparency

    Time to Shutdown CT Advisor

    Shutting down certificate monitoring

    February 16, 20233 mins
  • catspowershell

    My Cats implement Diffie Hellman in Powershell

    A minimum algorithm specification

    December 20, 20222 mins
  • ransomwareshadow copies

    How vssshield kills ransomware

    Live demonstration of vssshield protecting shadow copies

    November 05, 20223 mins
  • CVE-2022-21449ASN1encoding

    Encoding Neil Madden's Psychic Signatures

    CVE-2022-21449 ASN1 Encoding

    June 21, 20223 mins
  • kustosentinelhoneytoken

    Using Microsoft Sentinel to roll honey tokens on Windows

    Proactive incident monitoring

    May 09, 20222 mins
  • CVE-2022-0316Wordpressthemes

    Exploit for many Wordpress themes - CVE-2022-0316

    Exploit poc

    February 04, 20221 mins
  • onpremactive directorymfa

    Using Azure MFA for on premises Active Directory

    Protecting assets with Azure MFA without going cloud

    December 02, 20219 mins
  • ransomwarescripts

    Neutralising Script Based Ransomware

    Neutralising Script based ransomware

    July 25, 20212 mins
  • react. xss

    React XSS Protection Cheat Sheet

    Secure use of React and XSS

    June 20, 20217 mins
  • autodiscovervulnerabililty

    Obtaining Corporate Credentials via the Autodiscover Circus

    Obtaining Corporate Credentials via the Autodiscover Circus

    September 02, 20204 mins
  • active directoryjeapam

    Secure Active Directory management with PAM and JEA

    Active Directory Domain Just Enough Administration and Privileged Administration

    July 13, 20196 mins
  • penetration testingred teamvulnerability

    Dumbest pentesting script to ever succeed

    Getting service account credentials where you shouldn't

    July 09, 20191 mins
  • googlesafebrowse

    Abusing Google Safebrowse for phished credentials URLs

    What safebrowse looks for, and finding it yourself

    May 12, 20193 mins
  • Hack the BoxDAB

    Hack The Box DAB Writeup Security Assessment

    Hack the box 'DAB' writeup

    February 03, 20194 mins
  • godaddytracking

    Reverse engineering GoDaddy's tracking script

    Reverse engineering GoDaddy's tracking script

    January 14, 20196 mins
  • AzureADenumeration

    Enumerating Azure Federated Domains

    Discovering more than just subdomains

    May 09, 20182 mins
  • AWSS3static hosting

    Security and Caching headers with S3 websites

    Using Lambda @ Edge to set headers

    March 22, 20182 mins
  • Open Source

    Open Source marketing after two years

    CT Advisor has been auditing transparency for two years

    January 16, 20183 mins
  • interceptMFA

    Intercepting and Capturing MFA Logons

    That push notification isn't a silver bullet

    August 01, 20173 mins
  • AMPbloat

    The bloat of AMP

    Because fast means more Javascript

    July 04, 20173 mins
  • big data

    Using Hadoop with Clojure to process Active Directory Data

    Because Excel has a maximum theoretical limit of one row

    June 02, 20174 mins
  • NetregistryMFA

    Netregistry has no support for MFA either

    Because domains don't need security apparently

    May 10, 20171 mins
  • ContinuousBackupDocker

    Continuous Backup Tests with Docker

    Using docker to automate a database restoration and continuously test backups

    February 02, 20174 mins
  • Awesome security audit

    Is it a real security audit, or is it a React/Typscript template? Why not both?

    November 24, 20161 mins
  • mwavebank

    mwave requests bank logins of customers

    Apparently mwave actually think a reasonable method of running ecommerce is to simply ask for the logon to your online banking.

    November 17, 20161 mins
  • Certificate Transparency

    The improving state of SSL deployment

    Certificate Transparency monitoring service gives us great new insights into the increasing deployment of SSL certificates

    October 20, 20163 mins
  • RailsRoutes

    Intelligent Backend Routes with Rails and nginx

    How to avoid passing silly URLs to your backend

    July 17, 20164 mins
  • protobuffsbenchmark

    Use protobufs - now

    Benchmarking protobufs against JSON

    May 23, 20163 mins
  • argon2code review

    Argon2 code audits - part one - Infer

    Using Facebook Infer static analysis tool against argon2

    February 12, 20164 mins
  • Lets Encrypt

    Let's Encrypt - It's happening

    Trialling early Ruby ACME client for Lets Encrypt

    October 27, 20152 mins
  • ReactXSS

    Testing ReactJS for XSS vulnerabilities

    A test hardness to smoketest ReactJS for XSS vulnerabilities

    August 19, 20152 mins
  • testsruby

    Property based tests, contracts with Ruby

    Property based tests, contracts with Ruby

    July 19, 20156 mins
  • mass scanning

    Concurrent Vulnerability scanning with Erlang

    Mass Concurrent Vulnerability scanning with Erlang

    June 15, 20152 mins
  • fuzzingnginx

    Fuzzing nginx - Hunting vulnerabilities with afl-fuzz

    Fuzzing nginx with afl-fuzz for vulnerabilities

    April 28, 20155 mins
  • nginxlibressl

    nginx - Built against LibreSSL

    nginx - Built against LibreSSL

    April 06, 20151 mins
  • cryptochallenge

    Taking the Matasano Crypto Challenge

    Blog on the process of taking the cryptopals / matasanto crypto chalenge

    September 15, 20146 mins
  • hpestoreoncebackdoor

    HP D2D / Storeonce Backdoor

    HP's D2D Backdoor passwords

    May 29, 20141 mins
  • libscrypt

    libscrypt - password hashing library

    libscrypt - password hashing library

    April 01, 20141 mins
  • passwordconnectwise

    Connectwise Password Recovery

    Connectwise user password recovery from poor encryption

    October 02, 20131 mins
  • loldns

    LolDNS

    LolDNS

    September 23, 20132 mins
  • cpanelscanner

    cPanel Wordpress version/vulnerability scanner

    cPanel Wordpress version/vulnerability scanner

    September 23, 20131 mins
  • rio rizaldy

    Forensic research into an FX29 Compromise

    Rio Rizaldy, owned

    March 14, 20131 mins
  • mcafee

    McAfee Updater - I just shat on your filesystem

    This document discusses a vulnerability in McAfee’s updater. The download for this, and a KB article discussing it, is found here: https…

    December 12, 20123 mins
  • HPE P2000vmware

    HP P2000 on VMware - LUN 0

    HP P2000 on VMware - LUN 0

    December 12, 20125 mins

Built from a theme by Yinka Adedire