Offensive Security
Researcher &
Software Security.

Turning attack surfaces into CVEs.

×5

CVEs publicly disclosed vulnerabilities

// intelligence_feed

Latest Writeups.

16 mai 2026 7 min read

Copy Fail → Dirty Frag → Fragnesia: The Linux Page-Cache Exploit Family

Three kernel privilege escalation vulnerabilities in two weeks. All abuse page-cache corruption to overwrite read-only files in memory. No race condition required. Reliable root on every major distro. This is the technical breakdown and how to patch before you get hit.

Read article

16 mai 2026 6 min read

ADCS: The Certificate Attacks That Actually Get You Domain Admin

ESC1 gets all the attention. The real kills happen through ESC9, ESC14, ESC15 and ESC16. These are the ADCS escalation paths that bypass modern hardening, abuse certificate mapping logic, and work even after KB5014754. Full chains, tooling, detection.

Read article

16 mai 2026 5 min read

Shadow Credentials: Owning AD Through msDS-KeyCredentialLink

Shadow Credentials abuse msDS-KeyCredentialLink to authenticate as any user via PKINIT without touching their password. No reset, no ticket forging, no detection by most SOCs.

Read article

Offensive Security Researcher & Software Security.

Latest Writeups.

Copy Fail → Dirty Frag → Fragnesia: The Linux Page-Cache Exploit Family

ADCS: The Certificate Attacks That Actually Get You Domain Admin

Shadow Credentials: Owning AD Through msDS-KeyCredentialLink

Offensive Security
Researcher &
Software Security.