Ceri Coburn: Hacker | InfoSec | Reversing | RT Wannabe | Runner | Vizsla Fanboy 🏴󠁧󠁢󠁷󠁬󠁳󠁿 Author of SharpBlock and BOF.NET ᵀʷᵉᵉᵗˢ ᵃʳᵉ ᵐʸ ᵒʷⁿ ⁽ˢᵒᵐᵉᵗᶦᵐᵉˢ⁾

Inside IDA/dnSpy
Joined February 2015
Warning, non infosec post. But this is what I have been doing this weekend (and probably the next 4 😩). Coming along though.
8
0
36
Dumping lsass completely in memory without touching disk. Need an exfil BOF added to BOF.NET now to get that 55MB dump straight into #CobaltStrike.
7
92
322
CCob 🏴󠁧󠁢󠁷󠁬󠁳󠁿 retweeted
Having discovered various issues with Windows mini-filter drivers lately I found public information about how to analyze such drivers for security issues somewhat lacking. Therefore today I've put out a blog post to try and fix that glitch :-) googleprojectzero.blogspot.c…
4
238
477
Just for you @UK_Daniel_Card
Making sure everyone who has been liking the sea shanty tiktoks has seen the Kermit one
Show this thread
1
0
1
CCob 🏴󠁧󠁢󠁷󠁬󠁳󠁿 retweeted
A story on how I gained RCE against Microsoft Exchange Online using CVE-2020-16875 and bypassed their patches twice over. Latest patch bypass is unpatched against on-premise deployments! Making Clouds Rain - Remote Code Execution in Microsoft Office 365: srcincite.io/blog/2021/01/12…
12
372
776
CCob 🏴󠁧󠁢󠁷󠁬󠁳󠁿 retweeted
omg.... I did it! Win32 Syscalls from Nim!!! 😍
8
47
276