christbowel
IT Sicherheit, meine Leidenschaft :)
Offensive Security
Researcher &
Software Security.
Turning attack surfaces into CVEs.
×5// intelligence_feed
Latest Writeups.
Dependency-Track: Breaking Tenant Isolation with a Single PUT Request
OWASP Dependency-Track ships a Portfolio ACL feature that promises multi-tenant isolation. Turns out it only blocks reads. A low-privileged user can suppress any vulnerability, rewrite triage decisions, and poison audit trails on projects they cannot even see. Here is how, and why the maintainers called it a documented gap.
Copy Fail → Dirty Frag → Fragnesia: The Linux Page-Cache Exploit Family
Three kernel privilege escalation vulnerabilities in two weeks. All abuse page-cache corruption to overwrite read-only files in memory. No race condition required. Reliable root on every major distro. This is the technical breakdown and how to patch before you get hit.
ADCS: The Certificate Attacks That Actually Get You Domain Admin
ESC1 gets all the attention. The real kills happen through ESC9, ESC14, ESC15 and ESC16. These are the ADCS escalation paths that bypass modern hardening, abuse certificate mapping logic, and work even after KB5014754. Full chains, tooling, detection.