0x4d5a
@0x4d5a.bsky.social
Security Researcher @ Neodyme. Windows Internals, Reversing, Fuzzing, CTF
Yeah, totally agree. AVG did somehow block DLLs that weren't located in allow-listed folders, not really sure how it was implemented. However, C:/Windows/System32/* was allowed and System32/spool/drivers/color/ is user writeable...
December 28, 2024 at 4:47 PM
Yeah, totally agree. AVG did somehow block DLLs that weren't located in allow-listed folders, not really sure how it was implemented. However, C:/Windows/System32/* was allowed and System32/spool/drivers/color/ is user writeable...
Nice! I wasnt aware of your research, seems you beat us by a few years :D impressive to see that little changed regarding the attack surface and the actual vulns ...
December 28, 2024 at 4:22 PM
Nice! I wasnt aware of your research, seems you beat us by a few years :D impressive to see that little changed regarding the attack surface and the actual vulns ...