Micah Van Deusen's Blog

Creating a Vulnerable Machine

Overview Over the past year or more I have created two machines for the Hack The Box platform, Cereal and Intelligence. When I started, and still to this day, outside of the official submission cri...

HTML Maldoc Remote Macro Injection

Overview While looking into the filetypes supported by Microsoft Word, I discovered that HTML Word documents support loading macros from remote locations. These HTML files can have typical file ext...

The Power of SeImpersonation

Overview SeImpersonate is a powerful privilege that allows the ability to impersonate any token it can acquire a handle on. This is an already well researched privilege as there are a whole slew of...

Trending Tags