Micah Van Deusen's Blog

HTML Maldoc Remote Macro Injection

Overview While looking into the filetypes supported by Microsoft Word, I discovered that HTML Word documents support loading macros from remote locations. These HTML files can have typical file ext...

The Power of SeImpersonation

Overview SeImpersonate is a powerful privilege that allows the ability to impersonate any token it can acquire a handle on. This is an already well researched privilege as there are a whole slew of...

Trending Tags