Exploiting REST based API’s.
Identifying and exploiting CSP misconfigurations.
Exploiting SSRF vulnerabilities.
Modifying JWT values to elevate privileges.
Exploiting pre-existing RWX memory regions.
Attacking PAM and SSSD.
Targeting IBM’s Advanced Interactive eXecutive Operating System.
Modifying IV values to introduce backdoors in AES-GCM.
Unlocking TPM protected drives.
Dynamic syscall number resolution.
Hiding command and control traffic within AWS Cloudfront.
Exploiting IMDS to retrieve AWS credentials.