mr.d0x

C:\Users\mr.d0x> whoami_

Discovering Zero-Day Vulnerabilities in McAfee Products

June 9, 2021

Discovery and exploitation of two Zero-Day vulnerabilities affecting Mcafee Agent < 5.7.4 and McAfee Drive Encryption < 7.2.9.5

Continue Reading →

Spoofing and Attacking With Skype

February 2, 2021

Skype is plagued with spoofing vulnerabilities that Microsoft did not think need ‘immediate security servicing’

Continue Reading →

Abusing McAfee Vulnerabilities and Misconfigurations

January 17, 2021

Unpatched or misconfigured McAfee components will make life much easier during a penetration test or red team assessment

Continue Reading →

Dumping LSASS With Adplus Debugging Tool

January 9, 2021

A continuation of my series into abusing Microsoft’s debugging tools for red teams. This time I show how to create a memory dump of LSASS with the Adplus debugging tool

Continue Reading →

The Power of Cdb.exe

January 8, 2021

Exploring the little known uses of cdb

Continue Reading →

Execution and AWL Bypass Using LOLBin Remote.exe

January 7, 2021

Masquerading execution behind the Microsoft signed binary remote.exe

Continue Reading →

Bypass Windows Defender's Signature Based Detection

January 2, 2021

A practical example of bypassing Windows Defender’s signature detection by modifying source code

Continue Reading →

Custom C Program to Download and Inject a Sliver Stager

January 1, 2021

We’re going to create a C program that downloads a stager and injects it in the running process to establish communication with the attacker’s machine

Continue Reading →

whoami

December 30, 2020

A penetration tester and security researcher.

Continue Reading →