D3fa1t's Blog

Rantings of an Security Addict.

Cover Image for Spectre V1 (CVE-2017-5753)

With the new Spectre and Meltdown vulnerabilities discovered recently, let's look at Spectre V1 which was one of the first variants to be discovered.

Dhayalan
Dhayalan

More Stories

Cover Image for FLUSH + RELOAD , A Low noise L3 Cache side Channel

FLUSH + RELOAD , A Low noise L3 Cache side Channel

If you are wondering whether you can exploit a system which doesn't have any software vulnerabilities just by using hardwares or if you find using hardware to extract the private encryption keys from a victim program running GnuPG interesting then hold on.

Dhayalan
Dhayalan
Cover Image for Hack Slash Loot trainer

Hack Slash Loot trainer

Lets write a trainer for a game ;)

Dhayalan
Dhayalan
Cover Image for BadMouse: The Mouse clicks, while the Duck quacks!

BadMouse: The Mouse clicks, while the Duck quacks!

Let’s take a regular mouse and turn it into a system-owning ninja. One click, and boom—your system’s mine! Who knew a mouse could pack more punch than just pointing and clicking?

Dhayalan
Dhayalan
Cover Image for Linux x86 One-Way Shellcode. (Socket Reuse)

Linux x86 One-Way Shellcode. (Socket Reuse)

In this post we will look at an elegant and a simple technique to get our shell past the firewall.

Dhayalan
Dhayalan
Cover Image for Simple Windows PHP reverse shell

Simple Windows PHP reverse shell

Download and play windows PHP reverse shell for those who doesn't want to edit the reverse shell script from pentest-monkey.

Dhayalan
Dhayalan
Cover Image for Introduction to Manual Backdooring

Introduction to Manual Backdooring

In this post we'll take a look at manual backdooring, a way in which we can append the same shellcode to the end of an existing executable and pass it along.

Dhayalan
Dhayalan
Cover Image for Creating a Custom shellcode encoder

Creating a Custom shellcode encoder

When it is easy to encode our shellcode by using encoders from Metasploit such as the _XORmencoder_, _shikata ga nai_, etc.. why do we need to have a custom shellcode encoder ?

Dhayalan
Dhayalan