Series August 20, 2025
Windows Drivers Series Part 8 - Bypassing SMEP
Porting the HEVD buffer overflow exploit to 64-bit Windows 8.1 and using ROP to bypass Supervisor Mode Execution Prevention.
pwn rev windows drivers
All Posts
14 posts
Series August 15, 2025
Windows Drivers Series Part 7 - Buffer Overflow on Windows 7
Developing a kernel stack buffer overflow exploit against HackSysExtremeVulnerableDriver on 32-bit Windows 7 with token-stealing shellcode.
pwn rev windows drivers
Research August 6, 2025
HowTo - Set up Windows Kernel Debugging in VMware
Guide to setting up both network and serial kernel debugging for Windows VMs in VMware Workstation Pro using WinDbg.
windows drivers
Series August 6, 2025
Windows Drivers Series Part 6 - Debugging and Basic Rev
Setting up a kernel debugger, loading a driver into IDA, rebasing the text segment, and tracing IRPs through a live driver.
pwn rev windows drivers
Series July 22, 2025
Windows Drivers Series Part 5 - Basic Driver Functionality
Building a driver that handles DeviceIoControl requests and exploring buffered, direct, and neither I/O methods.
pwn rev windows drivers
Series July 20, 2025
Windows Drivers Series Part 4 - Interacting with the Driver
How IRPs, IO Stack Locations, and dispatch functions work together to let user-mode applications communicate with kernel drivers.
pwn rev windows drivers
Series July 17, 2025
Windows Drivers Series Part 3 - The Minimum Viable Driver
Setting up a driver development environment in Visual Studio and writing a minimal kernel driver that loads and unloads.
pwn rev windows drivers
Series July 16, 2025
Windows Drivers Series Part 2 - What's a Driver Anyways?
A history of Windows drivers and an explanation of what they are, the different types, and how they fit into the modern Windows kernel.
pwn rev windows drivers
Series July 15, 2025
Windows Drivers Series Part 1 - Overview
Introduction to the Windows driver exploitation series — who it's for, what tools you'll need, and why drivers are a great target.
pwn rev windows drivers
Writeups April 20, 2025
UMass CTF 2025 - Ghost in the Leg
Writeup for a Meltdown-style speculative execution exploit challenge on theLEG architecture, authored for UMass CTF 2025.
writeups hardware pwn author
Research January 27, 2025
HowTo - Decryption of Signal Messages on Windows
Step-by-step guide to decrypting the Signal desktop database on Windows, covering both the old plaintext key method and the new DPAPI-protected key.
dfir windows
Writeups December 19, 2024
HackTheBox Binary Badlands 2024 - Signaling Victorious
Decrypting Signal messages and extracting credentials from a Windows memory dump to solve the HTB Binary Badlands 2024 forensics challenge.
writeups dfir
Writeups October 17, 2023
HackTheBox University CTF 2023 - One Step Closer
Solving the One Step Closer challenge from the HTB University CTF 2023.
writeups dfir
Writeups October 17, 2023
HackTheBox University CTF 2023 - ZombieNet
Investigating persistent access on a compromised OpenWRT router image from the HTB Uni CTF 2023.
writeups dfir