Denis Skvortcov

I’ve written my first blog post - write-up for CVE-2021-23874! How to enumerate COM-objects attack surface, explore implemented functionality and exploit it the-deniss.github.io/posts/2021/05/…

CimFS: Crashing in memory, Finding SYSTEM! @cplearns2h4ck dug into Microsoft CimFS, found a sneaky 0-day, and guess what? The fix by Microsoft was just locking the door 🔐on unprivileged users. 😂 Dive into the adventure with us: starlabs.sg/blog/2025/03-c…

🔥 Last barrier destroyed: The compromise of Fuse Encryption Key in Intel CPUs! Full story by our researcher @_markel___ swarm.ptsecurity.com/last-barrier-d…

Excellent write-up on CVE-2024-38063 by Marcus Hutchins. malwaretech.com/2024/08/exploi… This was my first time ever reversing tcpip.sys and despite making many mistakes along the way I have learned a ton.

Today, Angelboy (@scwuaptx) revealed his Kernel Streaming research! 🚀 Check out how he uncovered this overlooked attack surface, leading to pwning Windows 11 at #Pwn2Own Vancouver 2024: devco.re/blog/2024/08/2…  #WindowsKernel #MSRC

Our team has uncovered multiple memory corruption vulnerabilities in FreeRDP and Suricata. These flaws could potentially expose users to significant security risks. Read the full report in blog post to understand the issues and how to protect your systems securelist.com/suricata-freer…

The time has come, and with it your reading material for the week. Phrack #71 is officially released ONLINE! Let us know what you think! phrack.org/issues/71/1.ht…

🤯 The level of sophistication of the XZ attack is very impressive! I tried to make sense of the analysis in a single page (which was quite complicated)! I hope it helps to make sense of the information out there. Please treat the information "as is" while the analysis progresses! 🧐 #infosec #xz

In this post I'll use CVE-2023-6241, a vulnerability in the Arm Mali GPU that I reported last November to gain arbitrary kernel code execution from an untrusted app on a Pixel 8 with MTE enabled. github.blog/2024-03-18-gai…

🔮NEW RCA!! A few hours after it was patched, TAG found an ITW exploit sample for CVE-2023-36802. @benoitsevens analyzed it in detail ✨ googleprojectzero.github.io/0days-in-the-w…

New blog from my team: Killing NTLM in Windows 11 - This is BIG 🔥🔥🔥 techcommunity.microsoft.com/t5/windows-it-…

Who needs a 0-click when you have MITM? ✨ Working with @billmarczak & @citizenlab we discovered 3 iOS and 1 Chrome 0-day from Intellexa, used to install Predator spyware in Egypt 🇪🇬 blog.google/threat-analysi…

Excited to share my hardest research about UAC 🤯 "Bypassing UAC with SSPI Datagram Contexts" 🔥 Enjoy the read! 👇 splintercod3.blogspot.com/p/bypassing-ua…

finally... hello, PS5 PSP :)

First big result from our new CPU research project, a use-after-free in AMD Zen2 processors! 🔥 AMD have just released updated microcode for affected systems, please update! lock.cmpxchg8b.com/zenbleed.html

I’ve found new vulnerability CVE-2023-1586 in Avast Anti-Virus restore malware functionality that could allow an attacker to gain SYSTEM privileges and execute arbitrary code! Details in my new short post the-deniss.github.io/posts/avast-pr…

Thanks to everyone who attended my Black Hat Asia talk! You can find the slides here: drive.google.com/file/d/1Pj7hSv…

Did you know that just a few month ago, if Avast quarantined your malware, it wasn't a problem, it was the opportunity.. to gain SYSTEM privileges and execute arbitrary code! Details of exploit chain CVE-2023-1585 and CVE-2023-1587 in my new post the-deniss.github.io/posts/2023/04/…

Root cause and exploitation analysis of CVE-2022-45770 is now available in English and without a paywall - hackmag.com/security/aguar…. Enjoy reading!

My presentation slides for "Windows 11: security by-default" from @BlueHatIL covering: Rust in win32k, Adminless Windows, Token Binding, Sandboxing win32, and more! posted here: github.com/dwizzzle/Prese…

Time for a new blogpost! Let's do a CHERIoT walkthrough - including a straightforward setup, understanding how we kill bug classes and mitigating attacks on our minimal TCB through practical examples, and more fun! msrc.microsoft.com/blog/2023/02/f…