Posts by date

2022

August

NEW: Posts on my security journey diary.

2021

August

• EternalBlue Part 8 - The full picture: Eternalblue, the exploitation.
• EternalBlue Part 7 - Studying exploitation concepts.
• EternalBlue Part 6 - Additional bugs.
• EternalBlue Part 5 - Vulnerability analysis.
• EternalBlue Part 4 - Study of SMB: Transactions and FEAs.

July

• EternalBlue Part 3 - Reverse engineering.
• EternalBlue Part 2 - Initial study of the exploit.
• EternalBlue Part 1- The start of the journey.

May

• Using Return Oriented Programming to bypass DEP/NX.
• Stack-based Buffer Overflow intro - Part 2.
• Stack-based Buffer Overflow intro - Part 1.

Diary of a wimpy hacker

Inspired by other similar blogs I’ve seen, I have recently decided to create some kind of ‘diary’ where to write down my security-related activities I do everyday, with the dual purpose of boosting my efficiency due to making things public and also just because I figured out it fits in this blog. It may be a good opportunity to log my work on my projects, too.

Jump ahead to the diary entry.

---

Contact me:

h3xduck on Github

h3xduck on Matrix

email on Gmail

h3xduck on Telegram