Skip to content

Firzens Blog

Misadventures in Security

  • Privacy Policy

Building a POC for CVE-2021-40438

If you’re blue team and want to know what an exploit for this looks like for filtering purposes I’ve added that information for you in the conclusions section. While working on one of the Insane machines on Hack The Box I came across a scenario in which the SSRF in mod_proxy of apache2 could have…

by FirzenOctober 13, 2021October 13, 2021
5 Comments on Building a POC for CVE-2021-40438

Dipping into windows kernel exploitation with HEVD

After playing around with HEVD by following the excellent blog post here and managing to have some first success. I wanted to look into some…

April 19, 2020April 19, 2020

Git Rekt #2 – Steghide

A while ago at our CTF meetup we were talking about the exploit exploit and got talking about other common CTF tools and what could…

April 12, 2020April 20, 2020

Git Rekt #1 – Siim/ftp

The idea After doing the writeup for the iCTF babyshop challenge I’ve been unsure what to write about, even though I felt like I wanted…

November 10, 2019November 10, 2019

ICTF baby_shop Writeup

So on our regular CTF meetup last week, a friend told me about a pwn challenge he had tried at a recent CTF and failed,…

May 27, 2019May 27, 2019

Recent Posts

  • Building a POC for CVE-2021-40438
  • Dipping into windows kernel exploitation with HEVD
  • Git Rekt #2 – Steghide
  • Git Rekt #1 – Siim/ftp
  • ICTF baby_shop Writeup

Recent Comments

  • Tim J on Building a POC for CVE-2021-40438
  • Sachin Lala on Building a POC for CVE-2021-40438
  • sasky on Building a POC for CVE-2021-40438
  • Yang Yu on Building a POC for CVE-2021-40438
  • Alain T on Building a POC for CVE-2021-40438

Archives

  • October 2021
  • April 2020
  • November 2019
  • May 2019

Categories

  • Uncategorized

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Firzens Blog

Proudly powered by WordPress | Theme: Yosemite by GretaThemes
  • Privacy Policy