{"version":1,"pages":[{"id":"CUHcEwXxm0yTqN6sWoe4","title":"About Me","pathname":"/researchs","siteSpaceId":"sitesp_ld7n1","description":""},{"id":"ZCPSDt5RaHWVw7hQZ4z7","title":"Bypassing DEP - Increasing the Gap","pathname":"/researchs/bypassing-dep-increasing-the-gap","siteSpaceId":"sitesp_ld7n1","description":"This blog talks about how to use WriteProcessMemory API Call for executing shellcode in a scenario where there is very less gap between shellcode and WriteProcessMemory call skeleton"},{"id":"4naMrafGNTVsaNo7OaCR","title":"Hijacking Cloud CI/CD Systems for Fun and Profit","pathname":"/researchs/hijacking-cloud-ci-cd-systems-for-fun-and-profit","siteSpaceId":"sitesp_ld7n1","description":"This research details a new technique that can be used by threat actors for supply chain attacks on open-source repositories using GCP, Azure and AWS."},{"id":"6y3MstR3uLYoOyPPGhd0","title":"Found some Access Keys?","pathname":"/researchs/found-some-access-keys","siteSpaceId":"sitesp_ld7n1","description":""},{"id":"zp7VxzUGYWOqqQaHrLRI","title":"AWS Cloud Researchs","pathname":"/researchs/aws-cloud-security/aws-cloud-researchs","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"}]},{"id":"agsfR2nQPVBim9AeZUgK","title":"AWS and the Secrets Exposed on Public ECR Repository","pathname":"/researchs/aws-cloud-security/aws-cloud-researchs/aws-and-the-secrets-exposed-on-public-ecr-repository","siteSpaceId":"sitesp_ld7n1","description":"This article shows some insights into how many secrets are exposed in public ECR in AWS and how a threat actor is just a container away to get their hands on those secrets.","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"AWS Cloud Researchs"}]},{"id":"xkhc0kZAtK5X7Een2bZD","title":"Hacking API Gateway","pathname":"/researchs/aws-cloud-security/hacking-api-gateway","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"AWS Cloud Security"}]},{"id":"7IsbfsNjfiMCG2Haqqr4","title":"API Gateway - Security","pathname":"/researchs/aws-cloud-security/hacking-api-gateway/api-gateway-security","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking API Gateway"}]},{"id":"4lEeRqjsLJKBzx64MJFd","title":"API Gateway API Calls","pathname":"/researchs/aws-cloud-security/hacking-api-gateway/api-gateway-api-calls","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking API Gateway"}]},{"id":"gDmk0NqCWTFdCY443qTM","title":"Hacking S3","pathname":"/researchs/aws-cloud-security/hacking-s3","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"AWS Cloud Security"}]},{"id":"6Qp10JeZJM56Jl1FZc76","title":"S3 - Security","pathname":"/researchs/aws-cloud-security/hacking-s3/s3-security","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking S3"}]},{"id":"zhrrKAX5BS6yGydrenas","title":"S3 API Calls","pathname":"/researchs/aws-cloud-security/hacking-s3/s3-api-calls","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking S3"}]},{"id":"IAvsbW1fXkh0geafVYJ9","title":"Hacking Cognito","pathname":"/researchs/aws-cloud-security/hacking-cognito","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"}]},{"id":"M2NBgfGsQT7kmJhg4jKG","title":"Cognito - Security","pathname":"/researchs/aws-cloud-security/hacking-cognito/cognito-security","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking Cognito"}]},{"id":"2iscHXIgQ8m1CzjRBeTp","title":"Cognito - API Calls","pathname":"/researchs/aws-cloud-security/hacking-cognito/cognito-api-calls","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking Cognito"}]},{"id":"80zJadbzWgqgmAXYxQue","title":"Hacking Lamda","pathname":"/researchs/aws-cloud-security/hacking-lamda","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"}]},{"id":"hCquAN2AzDukZPDi2AAF","title":"Lambda - Security","pathname":"/researchs/aws-cloud-security/hacking-lamda/lambda-security","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking Lamda"}]},{"id":"tMKl3AdBbCAvc4it8kFx","title":"Lambda - API Calls","pathname":"/researchs/aws-cloud-security/hacking-lamda/lambda-api-calls","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking Lamda"}]},{"id":"ddpPjRFf2LJu1ueON0ob","title":"Hacking Cloudbuild","pathname":"/researchs/aws-cloud-security/hacking-cloudbuild","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"}]},{"id":"UxRFidBjw2Iv8iuklWjH","title":"Cloudbuild - Security","pathname":"/researchs/aws-cloud-security/hacking-cloudbuild/cloudbuild-security","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking Cloudbuild"}]},{"id":"VTg4QQupfpDuP5xPIVhu","title":"Cloudbuild - API Calls","pathname":"/researchs/aws-cloud-security/hacking-cloudbuild/cloudbuild-api-calls","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"AWS Cloud Security"},{"label":"Hacking Cloudbuild"}]},{"id":"betdu0zEXBGmWvXyzvuk","title":"AWS Services","pathname":"/researchs/aws-cloud-security/aws-services","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"AWS Cloud Security"}]},{"id":"O8rjxxcQeQblvsY0Talx","title":"Exploit Development","pathname":"/researchs/windows-security-research/exploit-development","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"Windows Security Research"}]},{"id":"E0zKZEUzGudmtcuklVWE","title":"RTCore64.sys - CVE-2019-16098","pathname":"/researchs/windows-security-research/exploit-development/rtcore64.sys-cve-2019-16098","siteSpaceId":"sitesp_ld7n1","description":"This blog details the methodology and the approach used against developing exploit code for CVE-2019-16098","breadcrumbs":[{"label":"Windows Security Research"},{"label":"Exploit Development"}]},{"id":"FFMqnvBVfs289d7nioEn","title":"Mouse Server","pathname":"/researchs/windows-security-research/exploit-development/mouse-server","siteSpaceId":"sitesp_ld7n1","description":"Technical analysis of Mouse Server exploit","breadcrumbs":[{"label":"Windows Security Research"},{"label":"Exploit Development"}]},{"id":"MyqWyqr7MTJ1EEg7H1Fq","title":"mskssrv.sys - CVE-2023–29360","pathname":"/researchs/windows-security-research/exploit-development/mskssrv.sys-cve-2023-29360","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"Windows Security Research"},{"label":"Exploit Development"}]},{"id":"rPjuw7yeRlO4ZtYbkSgQ","title":"Fuzzing","pathname":"/researchs/windows-security-research/fuzzing","siteSpaceId":"sitesp_ld7n1","breadcrumbs":[{"label":"Windows Security Research"}]},{"id":"laixvMSNtNLp6C3jBcQP","title":"WTF","pathname":"/researchs/windows-security-research/fuzzing/wtf","siteSpaceId":"sitesp_ld7n1","description":"This page describes on how to use WTF for fuzzing and when its a bad idea to use WTF.","breadcrumbs":[{"label":"Windows Security Research"},{"label":"Fuzzing"}]},{"id":"HXeDT4NS2gsHuWPLjYmV","title":"Abusing Netlify Functions","pathname":"/researchs/supply-chain-research/abusing-netlify-functions","siteSpaceId":"sitesp_ld7n1","description":"This articles details a new technique on how threat actors can abuse Netlify functions to leak secrets configured in their Netlify pipelines.","breadcrumbs":[{"label":"Supply Chain Research"}]},{"id":"ryO8fCJBkEaz0tDOsO5y","title":"Reversing.kr","pathname":"/researchs/reverse-engineering/reversing.kr","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"Reverse Engineering"}]},{"id":"TPQlHxXRe11kPTL8EJpI","title":"Easy_CrackMe","pathname":"/researchs/reverse-engineering/reversing.kr/easy_crackme","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"Reverse Engineering"},{"label":"Reversing.kr"}]},{"id":"1Al3bMo3wKUnNxUdIQbJ","title":"Easy KeyGen","pathname":"/researchs/reverse-engineering/reversing.kr/easy-keygen","siteSpaceId":"sitesp_ld7n1","description":"","breadcrumbs":[{"label":"Reverse Engineering"},{"label":"Reversing.kr"}]},{"id":"X84u8ai6c6TUn7GnLW1o","title":"Github Actions - Cloud","pathname":"/researchs/failed-research-attempts/github-actions-cloud","siteSpaceId":"sitesp_ld7n1","description":"Successful research comprises of multiple failed research attempts. Here are some documented failures :)","breadcrumbs":[{"label":"Failed Research Attempts"}]},{"id":"iFYwa2pGszVdBhWTw2Vw","title":"CloudTrail","pathname":"/researchs/failed-research-attempts/cloudtrail","siteSpaceId":"sitesp_ld7n1","description":"A successful research comprises of countless failures. These are some documented failures :)","breadcrumbs":[{"label":"Failed Research Attempts"}]}]}