/ Orange Cyberdefense Switzerland's technical blog Thu, 26 Mar 2026 09:17:01 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.4 /wp-content/uploads/2024/10/cropped-favicon-32x32-1-32x32.png / 32 32 /2026/03/25/insomnihack-2026-the-golden-payout-writeup/ Wed, 25 Mar 2026 23:35:02 +0000 /?p=7338 Continue reading Insomni’Hack 2026 – Golden Payout writeup]]> /2025/08/25/blinding-edrs-a-deep-dive-into-wfp-manipulation/ Mon, 25 Aug 2025 08:22:56 +0000 /?p=7176 Continue reading Blinding EDRs: A deep dive into WFP manipulation]]> /2025/06/04/sonicdoor-attacking-sonicwalls-sma-500/ Wed, 04 Jun 2025 09:36:07 +0000 /?p=6642 Continue reading SonicDoor – Cracking SonicWall’s SMA 500]]> /2025/05/20/hijacking-the-windows-marebackup-scheduled-task-for-privilege-escalation/ Tue, 20 May 2025 09:26:14 +0000 /?p=7033 Continue reading Hijacking the Windows “MareBackup” Scheduled Task for Privilege Escalation]]> /2025/03/19/insomnihack-2025-gulosity-writeup/ Wed, 19 Mar 2025 20:43:27 +0000 /?p=6964 Continue reading Insomni’hack 2025 – GuLosity writeup]]> /2025/02/18/reinventing-powershell-in-c-c/ Tue, 18 Feb 2025 08:16:47 +0000 /?p=6726 Continue reading Reinventing PowerShell in C/C++]]> /2024/12/13/understanding-azure-container-registry-permissions-a-security-concern/ Fri, 13 Dec 2024 08:27:13 +0000 /?p=6672 Continue reading The effect of granting Azure Reader role on Azure Container Registry instances]]> /2024/12/05/attacking-cortex-xdr-from-an-unprivileged-user-perspective/ Thu, 05 Dec 2024 12:49:41 +0000 /?p=6405 Continue reading Attacking Cortex XDR from an unprivileged user perspective]]> /2024/11/25/arbitrary-web-root-file-read-in-sitecore-before-v10-4-0-rev-010422/ Mon, 25 Nov 2024 13:34:08 +0000 /?p=5725 Continue reading Arbitrary web root file read in Sitecore before v10.4.0 rev. 010422]]> /2024/11/11/exploiting-ksecdd-through-server-silos/ Mon, 11 Nov 2024 13:13:58 +0000 /?p=5731 Continue reading Exploiting KsecDD through Server Silos]]>