CVE Analysis

May 6, 2023 Browser Security, Pwn

CVE-2021-38001: A Brief Introduction to V8 Inline Cache and Exploitating Type Confusion

Some Background Info

Read more

Feb 3, 2023 Web Security, Web2

From RPC To RCE: VMWare Log Insight CVE-2022-31704

Preparations

Read more

Aug 5, 2022 Browser Security, Pwn

Browser Exploitation: A Case Study Of CVE-2020-6507

Motivation

Read more

Dec 10, 2021 Web Security, Web2

Log4j Analysis: More JNDI Injection

To be fair, the attack chain is pretty straight forward. I kinda hope all the other vulnerabilities are easy to analyze like this one…

Read more

Aug 12, 2021 Web Security, Web2

My Steps of Reproducing ProxyShell

本文由斗象TCC史辛泽荣誉出品，偷图偷代码还不给署名的我劝你好自为之。

Read more

Jun 4, 2021 Web Security, Web2

Learning JNDI Injection From CVE-2021-21985

Intro

Read more

Mar 19, 2021 Web Security, Web2

CVE-2021-22986 F5 REST Unauthenticated RCE Analysis

Introduction

Read more