A technical deep dive into the discovery of an unauthenticated zero-day vulnerability in the Ninja Forms - File Uploads WordPress extension, which allows arbitrary file uploads, remote code execution, and full server compromise.

Exploiting Heap Buffer Overflow in the authentication daemon used by most High Performance Computer.

Ambionics Security team discovered a pre-authentication remote code execution in vBulletin 5.6.9.

Early this year we had the opportunity to pentest Watchguard firewalls (XTM, Firebox) for a red team engagement. This blogpost will follow the journey in which I discover 5 vulnerabilities - 2 patched along the way - and build 8 distinct exploits, and finally obtain an unpatched pre-authentication remote root 0-day on every WatchGuard Firebox/XTM appliance.

This article reveals a privilege escalation vulnerability affecting PHP-FPM.

This articles intends to bring an exploitation scenario encountered during a common penetration test.