quarkslab

quarkslab's avatar
quarkslab
πŸ›‘οΈ quarkslab_at_infosec.exchange@momostr.pink
npub1zhy0...cve0
Securing every bit of your data website: https://quarkslab.com location: Paris, France
Finding a buggy driver is one thing, abusing it is another🧠 In his latest blog post, Luis Casvella shows you how BYOVD can be used as a Reflective Rootkit Loader ! πŸš€ ➑️
BYOVD to the next level (part 2) β€” rootkit like it's 2025 - Quarkslab's blog
Bring Your Own Vulnerable Driver (BYOVD) is a well-known post-exploitation technique used by adversaries. This blog post is part of a series. In pa...
 image
BYOVD is a well-known technique commonly used by threat actors to kill EDR πŸ”ͺ However, with the right primitives, you can do much more. Find out how Luis Casvella found and exploited 4 vulns (CVE-2025-8061) in a signed Lenovo driver. πŸ‘‡
BYOVD to the next level (part 1) β€” exploiting a vulnerable driver (CVE-2025-8061) - Quarkslab's blog
Bring Your Own Vulnerable Driver (BYOVD) is a well-known post-exploitation technique used by adversaries. This blog post is part of a series. We wi...
 image
RTFM they say but if you read the manual and copy code examples from it you may inadvertently introduce vulns in your code πŸ™€ In April we audited the PHP code. Now we followed up with a review of the code snippets in PHP documentation and found 81 issues πŸ‘‡
Security review of PHP documentation - Quarkslab's blog
The Open Source Technology Improvement Fund, Inc., engaged with Quarkslab to perform a security audit of the code snippets in the English version o...