Reegun JMicrosoft Teams|Exe Sideloading aka Exe proxying — Part 1As a part of threat hunting and research , I have been researching possible ways to evade EDR solutions and basic whitelisting rules to…Sep 8, 20191Sep 8, 20191
Reegun JUnsanitized file validation leads to Malicious payload download via Office binaries.As a part of finding vulnerable endpoints to improve defence, I used to reckon legitimate binaries on any chance of masking for payload…Jul 13, 20193Jul 13, 20193
Reegun JUpdate : Nuget/Squirrel uncontrolled endpoints leads to arbitrary code executionPart 1 : https://medium.com/@reegun/nuget-squirrel-uncontrolled-endpoints-leads-to-arbitrary-code-execution-80c9df51cf12Jul 1, 2019Jul 1, 2019
Reegun JTA505 group latest analysis, Found unregistered domainsMD5 — b0ecd639d4f4b3f1080c26abfa978681Jun 28, 2019Jun 28, 2019
Reegun JNuget/Squirrel uncontrolled endpoints leads to arbitrary code executionWhen i was researching Microsoft ‘Teams,’ I came across an interesting argument ‘update’, I got to know from Squirrel documentation that…Jun 28, 20193Jun 28, 20193