Windows Defender Exploit Guard Since our last article on EMET’s future and how it relates to Windows 10 in November 2016 ( see Moving Beyond Emmet ), we have gotten a ton of incredibly helpful feedback from fans and users of the platform about when it will finally come to an end. We are excited…

Introduction Recently we announced a series of blog posts dissecting the exploits released by the ShadowBrokers in April 2017; specifically some of the less explored exploits. This week we are going to take a look at Eternal Synergy, an SMBv1 authenticated exploit. This one is particularly interesting because many of the exploitation steps are purely…

Analysis of the Eternal Champion Exploit Recently, a group named the ShadowBrokers published several remote server exploits targeting various protocols on older versions of Windows. In this post we are going to look at the EternalChampion exploit in detail to see what vulnerabilities it exploited, how it exploited them, and how the latest mitigations in…