CVE-2018-8611 is a race-condition LPE in the Windows Kernel Transaction Manager (KTM), originally caught in the wild by Kaspersky’s AEP in October 2018 and patched in December 2018. This first instalment lays the KTM foundation — transaction managers, resource managers, transactions, enlistments — that the rest of the series builds on. core-jmp.org/2026/06/cve-201… #0day #CVE20188611 #Kaspersky #kernel #KernelTransactionManager #KTM #LocalPrivilegeEscalation #NCCGroup #PatchDiffing #PrivilegeEscalation #RaceCondition #SandboxBypass #SandboxEscape #WinDBG #WindowsKernel #WindowsKernelExploitation #WindowsKernelVulnerability

This content is Available NOW for students in Offensive Mobile Reversing and Exploitation & Offensive iOS Internals. ⚠️ Starting December 2025, content from this module will also be included in our certification exam. 👉 Ready to dive in? Enroll at academy.8ksec.io and get started. #iOSSecurity #MobileSecurity #PatchDiffing #ReverseEngineering #OffensiveSecurity

رشتو: در این برنامه قراره در خصوص تکنیک #PatchDiffing روی Patchهای #مایکروسافت صحبت و از دو ابزار #Bindiff و #Diaphora استفاده کنن. همچنین نشون میدن که چطوری #هوش_مصنوعی میتونه این فرایند رو ساده تر کنه. این برنامه ساعت 21:30 شروع میشه. #AI #PatchTuesday

Hot of the #ghidriff #patchdiffing press for May 2025 we have CVE-2025-32701 clfs.sys #exploitedinwild🔥 2 functions modified with relevant changes 🧐 A new flag restricting an IoCreateFileEx call, impacting object ref/deref behavior #UAF 🤔👀

در این ویدیو از @LowLevelTweets آسیب پذیری CVE-2024-11477 در 7zip رو بررسی کردن. از بررسی کد شروع شده تا #PatchDiffing و #فازینگ و ... نهایت به چیزی که رسیده: آسیب پذیری قابلیت اکسپلویت شدن رو داره و هکرها در شرایطی میتونن از سیستم قربانی شل بگیرن. youtube.com/watch?v=i5L9xEk_…

Exploiting Microsoft Kernel Applocker Driver (CVE-2024-38041) #MicrosoftKernelCVE #CyberSecurityServices #PatchDiffing #ExploitationProcess #RootCauseAnalysis csa.limited/blog/20240916-Ex…

CVE-2024-22263: Spring Cloud Dataflow Arbitrary File Writing #SpringCloudDataflow #ArbitraryFileWriting #PatchDiffing #StaticAnalysis #LabSetup blog.securelayer7.net/spring…

jumping on the CVE-2024-38063 tcpip.sys train...🚂can't resist.. just need to figure out the right packet... 🤓 #patchdiffing #CVE #RE #ghidriff gist.github.com/clearbluejar…

Hot of the #ghidriff #patchdiffing press for April 2024 we have CVE-2024-26219 in HTTP.sys 🔥 MSRC just started publishing CWE info! For this CVE we have a "CWE-476: NULL Pointer Dereference" 👀 See if you can find it 🧐 Hint: "UxLastMdlChunkNullFix" gist.github.com/clearbluejar…

Join @clearbluejar @1ns0mn1h4ck 2024 for "Patch Different on *OS". Check out this quick talk teaser video for a quick demo of some of the content! #INSO24 #Insomnihack #patchdiffing #apple youtube.com/watch?v=Qd4ScibF…

🔍✨ #patchdiffinthedark to step into the light. Latest VR/RE course led by @clearbluejar at #BHUSA. Root cause the latest CVEs with Ghidra. 2 offerings Sat/Sun or Mon/Tue. Early bird rates end May 24. #patchdiffing @BlackHatEvents blackhat.com/us-24/training/…

hello 2024! Hot off the #ghidriff #patchdiffing press we have the January 9, 2024—KB5034122 Windows 10 22H2 x64 kernel update ... gist.github.com/clearbluejar… 🔥 Side by side view is here: diffpreview.github.io/?0e52d… 👀 This month the kernel fixes include CVE-2024-20698 ... as there are not too many changes, perhaps we find the root cause? Take at look this function... gist.github.com/clearbluejar… 🧐 Hint: It rhymes with "vintager afterglow". Also! This diff is testing out an upcoming ghidriff feature.. check out the new callgraph. gist.github.com/clearbluejar…

Hot off the #ghidriff #patchdiffing press, we have the December Windows 11 22H2 x64 kernel security update KB5033375: gist.github.com/clearbluejar… 🧐 Side-by-side view here: diffpreview.github.io/?4f0c9…

Hot off the #ghidriff #patchdiffing press we have November's Windows 11 22H2 x64 kernel update KB5032190: gist.github.com/clearbluejar… 🧐 Side by side view is here: diffpreview.github.io/?02fc4… 👀

ghidriff v0.5.1 - usability updates, improved automated testing , and bug fixes 🪲 - github workflows now test a matrix of devcontainers across versions of python, Ghidra, and Java 🔥 github.com/clearbluejar/ghid… #patchdiffing #ghidra #githubactions

Hot off the #ghidriff #patchdiffing press we have October's Windows 11 22H2 kernel Update KB5031354... gist.github.com/clearbluejar… 👀

say hello to ghidriff 🔥 #ghidra #patchdiffing #Python github.com/clearbluejar/ghid…

I did some patchdiffing over the new #Fortinet bug, looks like it's the real deal, it's a nasty bug! Update your #fortigate before the bug goes public in a few days!

Just about finished with slides for my #patchdiffing workshop @reconmtl... Join me on Friday or Saturday to learn how to "Patch Diff In The Dark" #REcon2023 cfp.recon.cx/2023/talk/AC9CZ…

CVE-2022-34718 patch diffing, root cause analysis and exploit PoC Writeup by @chompie1337 securityintelligence.com/pos… #windows #patchdiffing #infosec #cybersecurity