PPLDump BOF, code-signed rootkits, remote windows password resets, XSS to RCE, FinSpy bootkit, Azure brute-forceable endpoint, and more!

OMI agent RCE in Azure, dynamic mac malware RE, Teams spoofing, AMD info disclosure, CABless Word RCE, dBase fuzzing for code exec, and more

Word RCE, Advanced Nim tradecraft, TCC bypass, encrypted heap, vuln hunting with binary ninja, token priv manipulation BOF, + more!

Mental models for offsec dev, lockscreen bypass, DLL hijacking/cloning, AV evasion framework, jailbreak detection defeat, and more!