NET R&D Digest (September, 2025)
Oleg Karasik .NET R&D Digest October 3, 2025 6 Minutes
#guide
Oleg Karasik .NET R&D Digest October 3, 2025 6 Minutes
The summer is over, September is left behind and .NET 10 is coming closer and closer (in fact, it is so close that Stephen Toub has already published his amazing “Performance Improvements in .NET 10” novel), which means it is just about time to read something new about the upcoming release (for instance, the great “Exploring the .NET 10 preview” series by Andrew Lock).
However, if, by any chance, you are interested in something besides .NET 10, then this issue of .NET R&D Digest is here to provide you with various bits of software development 🙂
This issue includes bits of AI, software development, learning, C#, performance, security, C, programming languages, ruby, and of course .NET and .NET Internals.
#guide
👾4
Bypassing Enrollment Restrictions to Break BYOD Barriers in Intune (bring your own device)
This byod is not that byod😅
Ways of device ownership spoofing and more for persistent access to Intune
This byod is not that byod😅
👾9
Forwarded from Order of Six Angles
ANALYZING WINPMEM DRIVER VULNERABILITIES
https://static.ernw.de/whitepaper/ERNW_White_Paper_73-Analyzing_WinpMem_Driver_Vulnerabilities_1.0_signed.pdf
https://static.ernw.de/whitepaper/ERNW_White_Paper_73-Analyzing_WinpMem_Driver_Vulnerabilities_1.0_signed.pdf
👾1
Forwarded from 1N73LL1G3NC3
OWA Pentest Guide
В статье разобраны все основные атаки и уязвимости OWA и MS Exchange:
Thx: @pentestnotes
В статье разобраны все основные атаки и уязвимости OWA и MS Exchange:
• OSINT
• Password spraying
• GAL/OAB
• Архитектура работы
• ZDI-CAN-22101
• OWA CAP Bypass
• CVE-2020-0688
• ProxyLogon
• CVE-2021-26855 - Pre-auth SSRF
• CVE-2021-27065 - Post-auth Arbitrary-File-Write
• ProxyOracle
• CVE-2021-31196 - The Padding Oracle
• CVE-2021-31195 - XSS
• Обход HttpOnly
• ProxyShell
• CVE-2021-34473 - Pre-auth Path Confusion leads to ACL Bypass
• CVE-2021-34523 - Exchange PowerShell Backend Elevation-of-Privilege
• CVE-2021-31207 - Post-auth Arbitrary-File-Write
• ProxyNotShell
• ProxyRelay
• Relay атаки
Thx: @pentestnotes
👾6
FileJacking – Initial Access with File System API
browser-based backdooring: FileJacking-PoC (GitHub)
browser-based backdooring: FileJacking-PoC (GitHub)
print3m.github.io
FileJacking – Initial Access with File System API
FileJacking – Malware Initial Access technique with File System API. Backdoor files, read / write folders directly from the browser – no downloads.
👾7
Breaking Control Flow Flattening: A Deep Technical Analysis
https://zerotistic.blog/posts/cff-remover/
advanced obfuscation with LLVM and template metaprogramming
https://0xpat.github.io/Malware_development_part_6/
basic Ultility To Generate C++ Codes That Applies Some Sort Of Control Flow Flattening Obfuscation On Your Projects.
https://github.com/PaulNorman01/Control-Flow-Flattening-Ultility
Building a Compile-Time Obfuscation Tool
https://medium.com/@bu19akov/building-a-compile-time-obfuscation-tool-c757effe19b5
Angr Control Flow Deobfuscation
https://research.openanalysis.net/angr/symbolic%20execution/deobfuscation/research/2022/03/26/angr_notes.html
https://zerotistic.blog/posts/cff-remover/
advanced obfuscation with LLVM and template metaprogramming
https://0xpat.github.io/Malware_development_part_6/
basic Ultility To Generate C++ Codes That Applies Some Sort Of Control Flow Flattening Obfuscation On Your Projects.
https://github.com/PaulNorman01/Control-Flow-Flattening-Ultility
Building a Compile-Time Obfuscation Tool
https://medium.com/@bu19akov/building-a-compile-time-obfuscation-tool-c757effe19b5
Angr Control Flow Deobfuscation
https://research.openanalysis.net/angr/symbolic%20execution/deobfuscation/research/2022/03/26/angr_notes.html
1👾7
I wannabe Red Team Operator, so what Now?
Tools won’t make you a Red Teamer any more than a stethoscope makes you a doctor. What matters is knowing why, when, and how to use them. Surgically.
Tools won’t make you a Red Teamer any more than a stethoscope makes you a doctor. What matters is knowing why, when, and how to use them. Surgically.
👾10
executing shellcode from non-executable memory and "bypassing" DEP/NX.
A proof-of-concept implementation demonstrating how to execute code from non-executable memory on Windows x64 systems by combining hardware breakpoints, vectored exception handling (VEH), and instruction emulation—bypassing DEP/NX protection without modifying memory permissions.
A proof-of-concept implementation demonstrating how to execute code from non-executable memory on Windows x64 systems by combining hardware breakpoints, vectored exception handling (VEH), and instruction emulation—bypassing DEP/NX protection without modifying memory permissions.
👾6
Meet the Malware: Extension
#stealer
TigerJack's Extensions Continue to Rob Developers Blind Across Different Marketplaces
#stealer
👾2
Bypassing Web Filters - SNI spoofing
https://blog.compass-security.com/2025/03/bypassing-web-filters-part-1-sni-spoofing/
https://blog.compass-security.com/2025/03/bypassing-web-filters-part-2-host-header-spoofing/
https://blog.compass-security.com/2025/03/bypassing-web-filters-part-3-domain-fronting/
https://blog.compass-security.com/2025/03/bypassing-web-filters-part-4-host-header-spoofing-domain-fronting-detection-bypasses/
#Infra
https://blog.compass-security.com/2025/03/bypassing-web-filters-part-1-sni-spoofing/
https://blog.compass-security.com/2025/03/bypassing-web-filters-part-2-host-header-spoofing/
https://blog.compass-security.com/2025/03/bypassing-web-filters-part-3-domain-fronting/
https://blog.compass-security.com/2025/03/bypassing-web-filters-part-4-host-header-spoofing-domain-fronting-detection-bypasses/
#Infra
👾7