The Hacking Varangian‘Dirty Pipe’ Linux Kernel Privilege Escalation Vulnerability (CVE-2022–0847)IntroductionMar 23, 2022Mar 23, 2022
The Hacking VarangianRevenge of the Printers: CVE-2021–34527 PrintNightmare VulnerabilityIn June of 2021, Microsoft disclosed a local privilege escalation vulnerability affecting the Print Spooler service (spoolsv.exe). This…Feb 5, 2022Feb 5, 2022
The Hacking VarangianLog4Shell Part 2: Discovery, Mitigation, and a Digital Vaccine!Previously, I explored the recent critical Log4j vulnerability (CVE-2021–44228) that allowed me to execute remote code on a Minecraft…Jan 14, 2022Jan 14, 2022
The Hacking VarangianExploring the Worst Exploit of 2020: ZeroLogon (CVE-2020–1472)ZeroLogon is a critical (CVSS: 10.0) vulnerability in the NETLOGON protocol that was first discovered by Secura researchers and pathed by…Dec 22, 2021Dec 22, 2021
The Hacking VarangianLog4Shell Vulnerability Part 1: Minecraft POCDecember 2021 saw the emergence of a new zero-day vulnerability named ‘Log4Shell’ or CVE-2021–44228 that impacts the Java Log4j library…Dec 21, 2021Dec 21, 2021
The Hacking VarangianWakanda: LFI, Python Shells, and Linux Privilege EscalationThis week I went through and had a crack at a CTF virtual machine called ‘Wakanda’ found at https://www.vulnhub.com/entry/wakanda-1,251/ .Nov 9, 2021Nov 9, 2021