Our owl Mario ( @MarioBartolome ) just published a small VM to generate application-layer protocols. Define your protocol from scratch with opcodes!

https://github.com/praetorian-inc/Harald

We hope our Fell(owl)ship is enjoying the summer! Time for beach/pool and a quick read of our new post by @XC3LL:

Mixing watering hole attacks with history leak via CSS

https://adepts.of0x.cc/css-history-leaks/

Dear Fellowlship,

Our owl @XC3LL showed during the EuskalHack VII conclave a technique to achieve stability when overwriting the R/W/X memory in VBA. Read this addendum in our homily: https://adepts.of0x.cc/vba-rwx-addendum/

You can find my talk about Offensive VBA here => https://github.com/X-C3LL/congresos-slides/blob/master/Offensive%20VBA.pdf

Our 2024 design!

Btw. We always collaborate with real artists. Fuck I.A. generated images 🖕

Dear Fell(owl)ship, we are experiencing a miracle. Two posts in our blog in the same month! This time @XC3LL's homily is about a product he pwned last xmas.

A christmas tale: pwning GTB Central Console (CVE-2024-22107 & CVE-2024-22108)

https://adepts.of0x.cc/gtbcc-pwned/

Dear Fellowlship, new post in our blog. This time @XC3LL decided to start the year talking about VBA & macros (we would say "enjoy it", but is VBA so... there are better things to do on a weekend):

VBA: having fun with macros, overwritten pointers & R/W/X memory
https://adepts.of0x.cc/vba-hijack-pointers-rwa/

H(owl) h(owl) h(owl)! We still alive and with holidays what means we have time to publish stuff! Check our last post by @TheXC3LL about lateral movements.

Developers are juicy targets: DCOM & Visual Studio => https://adepts.of0x.cc/visual-studio-dcom/

A naughy owl in Las Vegas 👀

Dear Fellowlship,

Our T-shirt & stickers are here. As usual, if you spot us in a conference feel free to approach us to get stickers. Our next stop will be OffensiveCON!

VBA: resolving exports in runtime without NtQueryInformationProcess or GetProcAddress - @adeptsof0xcc
https://adepts.of0x.cc/vba-exports-runtime/

Brace owlself, VBA is coming!

New post from @XC3LL => "VBA: resolving exports in runtime without NtQueryInformationProcess or GetProcAddress"

https://adepts.of0x.cc/vba-exports-runtime/

Hoot Hoot! A new post by @XC3LL ! Get your ocarina of time and play the song to travel to the past:

Beating an old PHP source code protector
https://adepts.of0x.cc/decrypt-nu-coder/

Adepts in da house!

Together!

Soon 😍

Dear Fell(owl)ship we have a new post before the year ends!

Take a cup of hot chocolate, go to the fireplace and read our last article by @XC3LL .

"Spice up your persistence: loading PHP extensions from memory"
https://adepts.of0x.cc/dlopen-from-memory-php/

Dear Fellowlship, we are going to start using this social network to share our works.