libNex
Navigation
▼
Blog
Double Free in Standard PHP Library Double Link List [CVE-2016-3132]
Exploiting CVE-2016-1903: Memory Read via gdImageRotateInterpolated
CVE-2015-2331: ZIP Integer Overflow Root Cause Analysis
CVE-2015-2783: Exploiting Buffer Over-read in Php's Phar
CVE-2015-3329: POC for buffer overflow in PHP phar_set_inode
Hunting for hidden parameters within PHP built-in functions (using frida)
Bugs
Random stuff
Contact
Random stuff
Conferences
PHP Internals: Exploit Dev Edition
[Troopers 10, Ruxcon 2016, Kiwicon X ]
Fuzzing Interpreters
[Chcon 2016]
Chronicles of Same Origin Policy Bypasses [OWASP NZ, WAHCKon]
Windows exploitation for the man on the street
Tools
Burp-Multi-Browser Highlighting
: Visualize multiple sessions within burp
Dissemble
r for Toshiba MeP Architecture
: IDA-Pro plugin when I was reversing the eye-fi card. WIP.
ChCon_HitchHiker_Guide_Fuzzing_Interpreters.pdf
(7629k)
Emmanuel Law,
Feb 2, 2018, 12:25 AM
v.1
php_internals_exploit_dev.pdf
(15007k)
Emmanuel Law,
Feb 2, 2018, 12:24 AM
v.1
