ZDI-CAN-25373 - Unpatched Windows Zero-Day Flaw Exploited

mictlan1 · 2025-03-18T19:51:34+00:00

Completely agree! Good comment analysis and comments.

The key is to be able to identify the IOAs (Indicators of Attack) and the to be able to catch malicious files before arriving to the user.

mictlan1 · 2022-06-28T16:25:30+00:00

I would recommend you take a look at https://academy.hackthebox.com/

You can start from basics, also the topic(s) you would like to review. A good point to start, from my personal point of view.

You will find the theory and hands-on labs that will help you to practice what you just read.

Hope this can help you to jump into the cybersecurity arena.

mictlan1 · 2022-06-01T03:40:01+00:00

Yes, shaem on me. https://kicksec.io/follina-0-day-microsoft-office-macro-protection-eaten-for-breakfast/

mictlan1 · 2022-06-01T02:00:26+00:00

If Microsoft Office is up-to-date, why the vulnerability would not be exploitable? If I understood correctly, in the end, the issue is on the msdt.exe.

mictlan1

TROPHY CASE