Analysis of CVE-2019-0708 (BlueKeep)

Binary Diffing As always, I started with a BinDiff of the binaries modified by the patch (in this case there is only one: TermDD.sys). Below we can see the results. Most of the changes turned out to be pretty mundane, except for “_IcaBindVirtualChannels” and “_IcaRebindVirtualChannels”. Both functions contained the same Read more…

Linux: Exploring RHEL8 Cockpit

Cockpit is one of the important feature introduced in RHEL8 for server discovery in Web Browser. Cockpit is a Red Hat sponsored free software project released under the LGPL v2.1+ It is completely free to use and available under the GNU LGPL.  You can easily install using “cockpit” rpm using yum and start Read more…

en_USEnglish
si_LKSinhala en_USEnglish