Exploiting CVE-2017-0199 – Complete Guide

Categories Security, Tutorials

Hello everyone, this month FireEye published a vulnerability known as CVE-2017-0199, which makes use of OLEv2 links in existing documents.
So, what is this OLEv2 object links? It’s basically an object (file) that we include in our file and it’s content will be loaded into the document. In short: file inside file

Quite confusing to start, but when we start using it, and exploiting this vulnerability, we understand better how it works.
Continue reading “Exploiting CVE-2017-0199 – Complete Guide”

Download Script – allitebooks.com

Categories Scripts

This week someone shared a really interesting e-books library, that it turns out that it have a security section with a lot of e-books. When I saw it, I commented that would be great to have a way to download all the e-books of that section without all the trouble to go one by one. That sentence created a challenge to a irc user aka n1k0n who saw this opportunity to test his skills and improve his knowledge.
Continue reading “Download Script – allitebooks.com”