ZecOps Research Team
Latest News
You’ve Got (0-click) Mail!
Updates We published another writeup: https://blog.zecops.com/vulnerabilities/seeing-maildemons-technique-triggers-and-a-bounty/ The vulnerability affected even the first iPhone (aka iPhone 1 / iPhone 2G) on iOS 3.1.3. First in-the-wild trigger
Exploiting SMBGhost (CVE-2020-0796) for a Local Privilege Escalation: Writeup + POC
Introduction CVE-2020-0796 is a bug in the compression mechanism of SMBv3.1.1, also known as “SMBGhost”. The bug affects Windows 10 versions 1903 and 1909, and
Vulnerability Reproduction: CVE-2020-0796 POC
CVE-2020-0796 Introduction Microsoft recently announced a bug in the compression mechanism of SMBv3.1.1. The bug is also known as “SMBGhost”. This bug has serious implications
ZecOps Task-For-Pwn 0 Bounty: TFP0 POC on PAC-Enabled iOS Devices <= 12.4.2 #FreeTheSandbox
ZecOps Task-For-Pwn 0 Bounty: TFP0 POC on PAC-Enabled iOS Devices <= 12.4.2 #FreeTheSandbox
Checkm8 Implications on iOS DFIR, TFP0, #FreeTheSandbox, Apple, and Google
Thanks to Checkm8 – a bootrom vulnerability that exist on most iPhones/iPads (<A12), a generic method to bypass the iOS sandbox restrictions will be made
Announcing Task For Pwn 0 (TFP0): Operation #FreeTheSandbox
Announcing Task For Pwn 0 (TFP0): Operation #FreeTheSandbox
You’ve Got (0-click) Mail!
Updates We published another writeup: https://blog.zecops.com/vulnerabilities/seeing-maildemons-technique-triggers-and-a-bounty/ The vulnerability affected even the first iPhone (aka iPhone 1 / iPhone 2G) on iOS 3.1.3. First in-the-wild trigger
Exploiting SMBGhost (CVE-2020-0796) for a Local Privilege Escalation: Writeup + POC
Introduction CVE-2020-0796 is a bug in the compression mechanism of SMBv3.1.1, also known as “SMBGhost”. The bug affects Windows 10 versions 1903 and 1909, and
Vulnerability Reproduction: CVE-2020-0796 POC
CVE-2020-0796 Introduction Microsoft recently announced a bug in the compression mechanism of SMBv3.1.1. The bug is also known as “SMBGhost”. This bug has serious implications
ZecOps Task-For-Pwn 0 Bounty: TFP0 POC on PAC-Enabled iOS Devices <= 12.4.2 #FreeTheSandbox
ZecOps Task-For-Pwn 0 Bounty: TFP0 POC on PAC-Enabled iOS Devices <= 12.4.2 #FreeTheSandbox
Checkm8 Implications on iOS DFIR, TFP0, #FreeTheSandbox, Apple, and Google
Thanks to Checkm8 – a bootrom vulnerability that exist on most iPhones/iPads (<A12), a generic method to bypass the iOS sandbox restrictions will be made
Announcing Task For Pwn 0 (TFP0): Operation #FreeTheSandbox
Announcing Task For Pwn 0 (TFP0): Operation #FreeTheSandbox
