Hacker News
- TPM Sniffing https://blog.scrt.ch/2021/11/15/tpm-sniffing/ 64 comments
- Remote Code Execution on a Facebook server https://blog.scrt.ch/2018/08/24/remote-code-execution-on-a-facebook-server/ 192 comments
- MongoDB Zero Day Exploit http://blog.scrt.ch/2013/03/24/mongodb-0-day-ssji-to-rce/ 4 comments
- TPM sniffing https://blog.scrt.ch/2021/11/15/tpm-sniffing/ 32 comments netsec
- Bypassing LSA Protection in Userland https://blog.scrt.ch/2021/04/22/bypassing-lsa-protection-in-userland/ 6 comments netsec
- The State of Pentesting in 2020 https://blog.scrt.ch/2020/12/28/state-of-pentesting-2020/ 20 comments netsec
- How to automatically rewrite 700'000 lines of code to bypass most AV (Part II) https://blog.scrt.ch/2020/07/15/engineering-antivirus-evasion-part-ii/ 7 comments netsec
- How to automatically rewrite 700'000 lines of code with libTooling to bypass most AV/EDR https://blog.scrt.ch/2020/06/19/engineering-antivirus-evasion/ 3 comments netsec
- Remote Code Execution on a Facebook server https://blog.scrt.ch/2018/08/24/remote-code-execution-on-a-facebook-server/ 14 comments programming
- Exploiting a misused C++ shared pointer on Windows 10 https://blog.scrt.ch/2017/01/27/exploiting-a-misused-c-shared-pointer-on-windows-10/ 12 comments cpp
- .NET serialiception https://blog.scrt.ch/2016/05/12/net-serialiception/ 11 comments netsec
- Mongodb – Remote Code Execution by DatabaseSpraying http://blog.scrt.ch/2013/06/04/mongodb-rce-by-databasespraying/ 21 comments netsec
- mongodb – SSJI to RCE | SCRT Sec Team blog http://blog.scrt.ch/2013/03/24/mongodb-0-day-ssji-to-rce/ 9 comments netsec