WhiteFlag

Browser Cache Smuggling: the return of the dropper Weaponising BCS and presenting remediations
Mar 24, 2025 - 6 min read

[EN] Insomni'hack 2225: Browser Cache SMuggling Replay of Insomni'hack 2025
Mar 16, 2025 - 1 min read

PsExec'ing the right way and why zero trust is mandatory In this blogpost, we'll see how the PsExec.exe binary works, how we can use it as redteamers to improve remote commande execution and how to protect against it.
Feb 10, 2025 - 20 min read

Dumping LSA secrets, a story about task decoralation In this blogpost we'll see how task decorrelation can be abused to bypass EDR's detection mecanisms during internal assessments
Jul 2, 2024 - 11 min read

Guest vs Null session on Windows This article will present the differences between guest and null authentication on Windows and how to exploit them.
Apr 18, 2024 - 6 min read

Latest posts