Rachit Arora

A long running series where I documented everything I did in my freetime for learning security.

WSR: #08 - February 05 2024 - February 11 2024

• GDB, breakpoints, diassembly
• NM, Strace, basic debugging using GDB
• Windows internals: Processes, threads, jobs, handles
• Windows system programming: Structures, 32vs64 bit, strings, errors, windows versions, WOW64, win32api.
• Posted two blogs, GDB and Windows system programming.

WSR: #07 - December 03 2023 - January 21 2024

• Lived Life, apart from security.
• Mentally prepared myself for the Masters Challenge in UMD
• Cleared CRTP by alteredsecurity

Update

Busy with packing ( Going to US for masters) and spending some time with fam/friends, couldnt keep with the streak. 2024 Feb is where I get back to security again.

WSR: #06 - November 27 - Decvember 03 2023

• Published : December 04, 2023
• CRTP
• Started with c and assembly again
• VisualStudio, cff explorer, procmon, process explorer, nasm ida

WSR: #05 - November 20 - November 26th 2023

• Published : November 27th, 2023
• CRTP
• DSRM, Custom SSP, Rights abuse
• ACL modification, AdminSDHolder

WSR: #04 - November 13 - November 19th 2023

• Published : November 23th, 2023
• CRTP
• Persistance, Golden ticket, Silver Diamond ticket, Skeleton key.

WSR: #03 - November 06 - November 13th 2023

• Published : November 15th, 2023
• Continued with CRTP
• DC sync, Extracting Creds, Over pass the hash, Invisi Shell, AMSI and powershell logging bypass

WSR: #02 - October 30th - November 5th 2023

• Published : November 5th, 2023
• Got assigned my first cve CVE-2023-47184
• started CRTP, have to ditch C and assembly for a while

WSR: #01 - October 22nd - 29th 2023

• Published : October 30th, 2023
• C/Assembly, Malware analysis and detonation (wannacry) + some static analysis. Expecting a CVE, hoping its not a dupe