Archive

2024¹

January¹

metatrapd - Metadata and honeypots

January 4, 2024 · 3 min · 516 words · Etienne Stalmans

2021³

May¹

Accessibility in Security

May 25, 2021 · 7 min · 1441 words · Etienne Stalmans

March¹

Thoughts on Threat Modeling

March 26, 2021 · 14 min · 2945 words · Etienne Stalmans

January¹

Universal RCE with Ruby YAML.load (versions > 2.7)

January 9, 2021 · 3 min · 606 words · Etienne Stalmans

2020¹

December¹

CVE-2020-25695 Privilege Escalation in Postgresql

December 15, 2020 · 13 min · 2637 words · Etienne Stalmans

2019⁵

November¹

Argument injection and getting past shellwords.escape

November 24, 2019 · 8 min · 1595 words · Etienne Stalmans

July²

CVE-2019-13139 - Docker build code execution

July 16, 2019 · 8 min · 1662 words · Etienne Stalmans

Bypassing Docker Authz Plugin and Using Docker-Containerd for Privesc

July 11, 2019 · 13 min · 2581 words · Etienne Stalmans

March²

Go get -u CVE-2018-16873

March 28, 2019 · 12 min · 2464 words · Etienne Stalmans

Universal RCE with Ruby YAML.load

March 2, 2019 · 5 min · 1002 words · Etienne Stalmans

2018⁵

September¹

Dockerfile for creating a git repository to serve CVE-2018-11235

September 19, 2018 · 1 min · 205 words · Etienne Stalmans

June³

Getting root on a Kubernetes node with gitRepo and CVE-2018-11235

June 3, 2018 · 3 min · 633 words · Etienne Stalmans

CVE-2018-11235 git RCE

June 3, 2018 · 13 min · 2758 words · Etienne Stalmans

CVE-2017-17405 RCE in Ruby’s FTP lib

June 1, 2018 · 1 min · 133 words · Etienne Stalmans

March¹

Quick win with GraphQL

March 16, 2018 · 8 min · 1571 words · Etienne Stalmans

2017⁵

December¹

netstat without netstat

December 20, 2017 · 6 min · 1267 words · Etienne Stalmans

November¹

Polycom HDX Series RCE

November 12, 2017 · 8 min · 1527 words · Etienne Stalmans

October¹

MSWord - Obfuscation with Field Codes

October 23, 2017 · 11 min · 2339 words · Etienne Stalmans

August¹

Phishing with OAuth and o365/Azure

August 2, 2017 · 7 min · 1294 words · Etienne Stalmans

April¹

NAT-to-NAT VPN with WireGuard

April 17, 2017 · 5 min · 988 words · Etienne Stalmans

2016³

December²

XXE FTP Server - A {web,ftp}-server for XXE

December 11, 2016 · 3 min · 567 words · Etienne Stalmans

tcpprox - An intercepting TCP proxy

December 11, 2016 · 7 min · 1329 words · Etienne Stalmans

October¹

Powershell Shells

October 3, 2016 · 2 min · 333 words · Etienne Stalmans

2015⁵

September¹

Viewing, modifying and replaying websockets

September 10, 2015 · 2 min · 320 words · Etienne Stalmans

August¹

Abusing File Converters

August 22, 2015 · 3 min · 588 words · Etienne Stalmans

June³

Huawei Quidway Password Extraction

June 17, 2015 · 2 min · 397 words · Etienne Stalmans

Mongo Shell escape

June 15, 2015 · 1 min · 168 words · Etienne Stalmans

Hipsters and data

June 14, 2015 · 2 min · 377 words · Etienne Stalmans

2024 1

January 1

metatrapd - Metadata and honeypots

2021 3

May 1

Accessibility in Security

March 1

Thoughts on Threat Modeling

January 1

Universal RCE with Ruby YAML.load (versions > 2.7)

2020 1

December 1

CVE-2020-25695 Privilege Escalation in Postgresql

2019 5

November 1

Argument injection and getting past shellwords.escape

July 2

CVE-2019-13139 - Docker build code execution

Bypassing Docker Authz Plugin and Using Docker-Containerd for Privesc

March 2

Go get -u CVE-2018-16873

Universal RCE with Ruby YAML.load

2018 5

September 1

Dockerfile for creating a git repository to serve CVE-2018-11235

June 3

Getting root on a Kubernetes node with gitRepo and CVE-2018-11235

CVE-2018-11235 git RCE

CVE-2017-17405 RCE in Ruby’s FTP lib

March 1

Quick win with GraphQL

2017 5

December 1

netstat without netstat

November 1

Polycom HDX Series RCE

October 1

MSWord - Obfuscation with Field Codes

August 1

Phishing with OAuth and o365/Azure

April 1

NAT-to-NAT VPN with WireGuard

2016 3

December 2

XXE FTP Server - A {web,ftp}-server for XXE

tcpprox - An intercepting TCP proxy

October 1

Powershell Shells

2015 5

September 1

Viewing, modifying and replaying websockets

August 1

Abusing File Converters

June 3

Huawei Quidway Password Extraction

Mongo Shell escape

Hipsters and data

2024¹

January¹

2021³

May¹

March¹

January¹

2020¹

December¹

2019⁵

November¹

July²

March²

2018⁵

September¹

June³

March¹

2017⁵

December¹

November¹

October¹

August¹

April¹

2016³

December²

October¹

2015⁵

September¹

August¹

June³