menu-burger
close-menu-icon
CODE WHITE - FINEST HACKING Intelligence Driven Security Initial Assessment Security Intelligence Service About us
PUBLIC VULNERABILITY LIST Local Privilege Escalation in Ivanti DSM SPPageparserFilter Bypass in SharePoint Data Source Protection Bypass During XML Deserialization in DevExpress ...
CAREERS Challenge Pentester / Redteamer Developer Systems Engineer / Admin
BLOG Blindsiding auditd for Fun and Profit From Blackbox .NET Remoting to Unauthenticated Remote Code Execution Java Exploitation Restrictions in Modern JDK Times ...
mastodon-icon linkedin-icon xing-icon twitter-icon rss-feed-icon
Imprint Privacy Policy
2014 - 2023 © CODE WHITE GmbH
close-menu-icon
> CODE WHITE - Finest Hacking > Tags > code-white
Blindsiding auditd for Fun and Profit
From Blackbox .NET Remoting to Unauthenticated Remote Code Execution
Java Exploitation Restrictions in Modern JDK Times
JMX Exploitation Revisited
Attacks on Sysmon Revisited - SysmonEnte
Bypassing .NET Serialization Binders
.NET Remoting Revisited
RCE in Citrix ShareFile Storage Zones Controller (CVE-2021-22941) – A Walk-Through
About the Unsuccessful Quest for a Deserialization Gadget (or: How I found CVE-2021-21481)
Sophos XG - A Tale of the Unfortunate Re-engineering of an N-Day and the Lucky Find of a 0-Day
Liferay Portal JSON Web Service RCE Vulnerabilities
CVE-2019-19470: Rumble in the Pipe
Exploiting H2 Database with native libraries and JNI
Heap-based AMSI bypass for MS Excel VBA and others
Telerik Revisited
LethalHTA - A new lateral movement technique using DCOM and HTA
Marshalling to SYSTEM - An analysis of CVE-2018-0824
Poor RichFaces
Exploiting Adobe ColdFusion before CVE-2017-3066
Handcrafted Gadgets
SAP Customers: Make sure your SAPJVM is up-to-date!
AMF – Another Malicious Format
Return of the Rhino: An old gadget revisited
Infiltrate 2016 Slidedeck: Java Deserialization Vulnerabilities
Compromised by Endpoint Protection: Legacy Edition
Java and Command Line Injections in Windows
CVE-2015-3269: Apache Flex BlazeDS XXE Vulnerabilty
Compromised by Endpoint Protection
Reading/Writing files with MSSQL's OPENROWSET
CVE-2015-2079: Arbitrary Command Execution in Usermin
CVE-2015-0935: PHP Object Injection in Bomgar Remote Support Portal
$@|sh – Or: Getting a shell environment from Runtime.exec
Exploiting the hidden Saxon XSLT Parser in Ektron CMS
How I could (i)pass your client security