Quang Vo | Quang Vo This is my personal github page where I publish write-ups and research

Posts

May 22, 2023
Red team: Journey from RCE to have total control of cloud infrastructure
Jul 18, 2022
Analyze .NET deserialization: TypeConfuseDelegate gadget chain with BinaryFormatter
Jun 6, 2022
CVE-2022-26134: A look into bypass isSafeExpression check in Confluence Preauth RCE
Apr 22, 2022
WSO2 Carbon Server: Pre-auth RCE bug ( CVE-2022-29464)
Mar 25, 2022
Analyze Java deserialization: CommonsCollections2 gadget chain ( part 2 )
Jan 19, 2022
Analyze Java deserialization: CommonsCollections5 gadget chain ( part 1 )
Dec 11, 2021
Apache Log4j RCE 0day: CVE-2021-44228
Sep 27, 2021
DownUnder CTF 2021 - Attacking AES ECB mode - Break Me challenge
Sep 1, 2021
A look into CVE-2021-26084 Confluence RCE
Aug 16, 2021
My journey to reproduce the Proxyshell exploit chain (reported by Orange Tsai)