CODE WHITE - FINEST HACKING
Intelligence Driven Security
Initial Assessment
Security Intelligence Service
About us
PUBLIC VULNERABILITY LIST
SPThemeBackgroundImageUri Relative Path Traversal in SharePoint
Multiple Vulnerabilities in Syncfusion ASP.NET MVC
SequenceExternalizable Arbitrary Deserialization in WebLogic Server
...
CAREERS
Challenge
Pentester / Redteamer
Vulnerability Intelligence Analyst
BLOG
Teaching the Old .NET Remoting New Exploitation Tricks
Leaking ObjRefs to Exploit HTTP .NET Remoting
Exploiting ASP.NET TemplateParser — Part II: SharePoint (CVE-2023-33160)
...
>
CODE WHITE - Finest Hacking
>
Authors
>
Matthias Kaiser
LethalHTA - A new lateral movement technique using DCOM and HTA
Marshalling to SYSTEM - An analysis of CVE-2018-0824
Exploiting Adobe ColdFusion before CVE-2017-3066
Return of the Rhino: An old gadget revisited
Infiltrate 2016 Slidedeck: Java Deserialization Vulnerabilities
CVE-2015-3269: Apache Flex BlazeDS XXE Vulnerabilty
Exploiting the hidden Saxon XSLT Parser in Ektron CMS
How I could (i)pass your client security