Introduction Havoc is a modern command-and-control (C2) framework with a modular architecture. In the last post, we explored how to install and run Havoc C2. One of its most powerful features is ...

I’ve been diving deeper into Windows internals and red teaming over the past few days. While I already hold penetration testing certifications, I wanted to push beyond surface-level knowledge. That...

So, you’ve started your journey into the fascinating world of Capture The Flag (CTF) challenges and binary exploitation. You understand the concepts—buffer overflows, Return-Oriented Programming (R...

In the world of binary exploitation, one technique stands out for its cleverness and power: Return-Oriented Programming (ROP). If you’ve been learning exploit development, you’ve likely heard of it...

In the quest for robust operating system security, fuzz testing (fuzzing) plays a vital role. Among the most advanced tools in this domain is Syzkaller, a coverage-guided kernel fuzzer designed spe...

As we all know, System calls are the backbone of every Linux program. In this blog, we’ll take a deep dive into Linux system calls: We’ll start by exploring what system calls are and why they e...

In our previous blogs, we explored the fundamentals of Linux kernel modules and even developed a basic kernel module along with a simple character device driver. This post is a follow-up to my prev...

The Raspberry Pi 2B uses an ARM Cortex-A7 CPU (ARMv7), which can be emulated in QEMU using the qemu-system-arm command with the virt or versatilepb machine. Refer

Introduction In the previous blog, we explored the basics of Linux kernel module development. We also examined the fundamental differences between a Linux kernel module and a device driver, as wel...