Here's Part 2 of the Buffer Overflows in Modern Era series. In this post, we'll perform the actual buffer overflow using Python, learn how ROP works + DEP restrictions, and once again execute the obligatory Windows calculator 😸 g3tsyst3m.github.io/binary%20explo…

IPC 4 is live, RPC 3 is out My first post on RPC security. I’ve mentioned my tool NauthNRPC too which you can use to enumerate Windows users without authentication. you can find the tool here: github.com/sud0Ru/NauthNR… sud0ru.ghost.io/windows-inter-…

I didn’t wake up early enough to beat the heat this morning but at least I got this run done before the 100° temps hit This one was a nice 7 minute warm up followed by the tempo run portion. 🏃🏻

Never seen before footage inside the cockpit of the B-2 Stealth Bombers. Wow.

BREAKING: DHS Secretary Kristi Noem has issued a nationwide terr-rism alert for the United States.

🤯

🚨 LIVE in 1 hour! Join Jonathan for Part 3 of the WinDbg series. Learn how calling conventions impact your reverse engineering, from stdcall to fastcall. 🔗 sans.org/u/1Bu4 #WinDbg #RedTeam #ReverseEngineering #SEC670

📢 Now OnDemand! Learn the calling conventions every red teamer and reverse engineer needs. Join Jonathan as he walks through stdcall, fastcall & more in WinDbg Part 3. 📺 Watch now: 🔗 sans.org/u/1Bu4 #WinDbg #RedTeam #ReverseEngineering #SEC670

My tstat stays at 68… forever. When I travel, that tstat goes as low as it can get to 62.

This week is done! The 10k run this morning was good but the humidity and hills killed me. I had such a great pace and time up until mile 4. After that I was just drenched in sweat with not a dry spot on my shirt. I ended up feeling super dehydrated and dizzy. I need to grab

Introduction to Windows kASLR Internals r0keb.github.io/posts/kASLR-In… Credits ö #cybersecurity

This run wasn’t part of the formal NRC half marathon plan but I was just curious what my mile time would be. It isn’t Dave Kennedy speeds but I’m working towards it. I’m proud of my run training so far. Disney World half marathon here I come! October is going to be here

We're excited to announce a major new release of x64dbg! The main new feature is support for bitfields, enums and anonymous types, which allows all types in the Windows SDK to be represented and displayed 🔥

In my upcoming webinar with Ivan Rouzanov, you'll see induced Secure Kernel crashes, AI consumption and analysis of insane amounts of Intel Processor Trace during a BSOD, and many other cool things. Tuesday, July 15 at 10am Central Time: attendee.gotowebinar.com/register/85453…

I decided to do 2 workouts back to back and ran 4 miles. 😁 this one felt really good! Yes, the miles combined don’t add up to 4, but I had to stop one workout and then start the next workout. I was running in between that time though.

Onboard yourself - PaloAlto Global Protect edition: 1. Become local admin 2. Export device cert from original workstation 3. Import cert in your VM 4. Login with user creds 5. Enjoy EDR-free testing :)

Clever idea!

The Blog post about "Revisiting Cross Session Activation attacks" is now also public. Lateral Movement with code execution in the context of an active session? 😎 Here you go: r-tec.net/r-tec-blog-rev…

I hope y’all pay attention when using self checkout registers. Today we were checking out and noticed that every item we scanned rang up with double the quantity. The attendant came over and just said.. yeah this one is glitchy.. and removed the doubled items. 🤦🏻‍♂️ just shut it

Out strong. Back fast. 🏃🏻 I failed to beat the heat and humidity this morning and this was the closest I’ve ever been to passing out during a run. At least that run is done 😅