March

Pre-authentication SQL injection to RCE in GLPI (CVE-2025-24799/CVE-2025-24801)

February

The business of forged documents: Investigation into a complex network

November

Introducing lightyear, a new way to dump PHP files

September

Iconv, set the charset to RCE: Exploiting the glibc to hack the PHP engine (part 3)

Jupiter X Core Plugin <= 4.6.5 Remote Code Execution (CVE-2024-7772)

Jupiter X Core Plugin <= 4.7.5 Authentication Bypass (CVE-2024-7781)

StealC Malware Analysis Part 3

StealC Malware Analysis Part 2

StealC Malware Analysis Part 1

July

Writing a stealer logs parser

June

Iconv, set the charset to RCE: Exploiting the glibc to hack the PHP engine (part 2)

Introducing Scalpel, a Burp Suite extension to edit HTTP traffic, in Python 3

May

Iconv, set the charset to RCE: Exploiting the glibc to hack the PHP engine (part 1)

December

Introducing wrapwrap: using PHP filters to wrap a file with a prefix and suffix

Owncloud: details about CVE-2023-49103 and CVE-2023-49105

June

XORtigate: Pre-authentication Remote Code Execution on Fortigate VPN (CVE-2023-27997)

XORtigate: Forensics short notice (CVE-2023-27997)

March

Sshimpanzee

Cobalt Strike Investigation - Part 2

January

Unserializable, but unreachable: Remote code execution on vBulletin

September

Cobalt Strike Investigation Part 1

August

Blind exploits to rule WatchGuard firewalls

April

Obfuscated obfuscation

March

AvosLocker Ransomware Linux Version Analysis

January

Hacking Root-Me: SPIP SQL injection leading to RCE (challenge)

October

PHP-FPM local root vulnerability (CVE-2021-21703)

September

DanaBot Communications Update

April

Dridex Loader Analysis

January

Laravel <= v8.4.2 debug mode: Remote code execution

November

Remote code execution on Sqreen: exploiting the microagent

October

Secret fragments: Remote code execution on Symfony based websites

Lockbit analysis

March

Pentesting a banking FTP service

Whitepaper: The Lazarus Constellation - A study on North-Korean malware

January

Breaking PHP's mt_rand() with 2 values and no bruteforce

March

Magento 2.2.0 <= 2.3.0 Unauthenticated SQLi

February

Exploiting Drupal8's REST RCE

October

CVE-2017-11176: A step-by-step Linux Kernel exploitation (part 4/4)

CVE-2017-11176: A step-by-step Linux Kernel exploitation (part 3/4)

CVE-2017-11176: A step-by-step Linux Kernel exploitation (part 2/4)

CVE-2017-11176: A step-by-step Linux Kernel exploitation (part 1/4)

July

PrestaShop 1.6 Privilege Escalation

July

PHP Generic Gadget Chains: Exploiting unserialize in unknown environments

May

Oracle PeopleSoft Remote Code Execution: Blind XXE to SYSTEM Shell

April

TYPO3 News module SQL Injection

March

Drupal 7.x Services module unserialize() to RCE

February

Grails PDF Plugin XXE

January

CVE-2016-9838 - Joomla! Account Takeover & Remote Code Execution