DEVCORE

Tech Editorials #Vulnerability #Ubuntu #Advisory #Linux #Kernel #AppArmor

The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction

Pumpkin

2025-06-26

Recently, Ubuntu introduced sandbox mechanisms to reduce the attack surface, and they seemed unbreakable. However, after carrying out in-depth research, we found that the implementation contained some issues, and bypassing it was not as difficult as expected. This post will explain how we began our research at the kernel level and discovered a bypass method. We will also share some interesting stories from the process.

Latest News #OffSec #Windows #OSEE #Vulnerability #LiveTraining

OSEE Exam Uncovered: Cracking OSEE in Taipei

Terrynini

2025-05-27

EXP-401(OSEE), also known as Advanced Windows Exploitation (AWE), is considered OffSec's hardest certification. As of now, only about 100–200 people worldwide hold this certification, and the pass rate is around 10%.

Tech Editorials #CVE #Vulnerability #Windows #Kernel #Advisory

Frame by Frame, Kernel Streaming Keeps Giving Vulnerabilities

Angelboy

2025-05-17

In-depth research into Windows Kernel Streaming vulnerabilities, revealing MDL misuse, buffer misalignment, and exploitation techniques used in CVE-2024-38238 and others.

Tech Editorials #Vulnerability #Windows #Advisory #CVE

From Convenience to Contagion: The Half-Day Threat and Libarchive Vulnerabilities Lurking in Windows 11

Terrynini

2025-02-12

Windows 11's KB5031455 update adds RAR and 7z support via libarchive, but DEVCORE discovered multiple vulnerabilities, including Heap Buffer Overflow and arbitrary file operations. Delayed patching also enables “Half-day” attacks, putting projects like ClickHouse at risk. A step forward in convenience—or a hidden security threat?

Tech Editorials #CVE #Vulnerability #WorstFit #RCE #Windows

WorstFit: Unveiling Hidden Transformers in Windows ANSI!

Orange Tsai

2025-01-09

The research unveils a new attack surface in Windows by exploiting Best-Fit, an internal charset conversion feature. Through our work, we successfully transformed this feature into several practical attacks, including Path Traversal, Argument Injection, and even RCE, affecting numerous well-known applications!

Tech Editorials #CVE #Vulnerability #Windows #Kernel #Advisory

Streaming vulnerabilities from Windows Kernel - Proxying to Kernel - Part II

Angelboy

2024-10-05

This research continues to explore the attack surface of Kernel Streaming, delving into newly discovered vulnerabilities within another feature of Kernel Streaming and demonstrating how to leverage this bug class to successfully attack Windows 11. This topic was also presented at HEXACON 2024.

Red Team Assessment

Penetration Testing

Security Consulting

Security Training

Overview

Competitions and Awards

Enterprise Vulnerability Reports

International Conferences

CVE List

Company Overview

Team Members

Achievements

Corporate Social Responsibility

Job Opportunities

DEVCORE CONFERENCE

BLOG

Media Resources

Search

Contact

中文

English

BLOG

All Articles

The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction

Pumpkin

OSEE Exam Uncovered: Cracking OSEE in Taipei

Terrynini

Frame by Frame, Kernel Streaming Keeps Giving Vulnerabilities

Angelboy

From Convenience to Contagion: The Half-Day Threat and Libarchive Vulnerabilities Lurking in Windows 11

Terrynini

WorstFit: Unveiling Hidden Transformers in Windows ANSI!

Orange Tsai

Streaming vulnerabilities from Windows Kernel - Proxying to Kernel - Part II

Angelboy