Gabriel Lawrence

Triggering a DNS lookup using Java Deserialization

I was inspired by Philippe Arteau ‏@h3xstream, who wrote a blog posting describing how he modified the Java Commons Collections gadget in ysoserial to open a URL. One great point he made was that many read »

Dirty COW - (CVE-2016-5195) - Docker Container Escape

Dirty COW is the name for a vulnerability that stems from a race condition in the way that the Linux kernel's memory subsystem handles read only private mappings when a Copy On Write situation is trig read »

↑ to top

Paranoid Software

Farm to table information security