https://xn--kemetmller-feb.com/tags/vulnerability-research/Recent content in Vulnerability Research on KemetmüllerHugo -- gohugo.ioen© 2026 Christoph Kemetmüllerhttps://xn--kemetmller-feb.com/blog/behind-the-llm-cybersecurity-hype/Mon, 27 Apr 2026 16:46:29 +0200https://xn--kemetmller-feb.com/blog/behind-the-llm-cybersecurity-hype/<h2 class="relative group">Introduction <div id="introduction" class="anchor"></div> <span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100 select-none"> <a class="text-primary-300 dark:text-neutral-700 !no-underline" href="#introduction" aria-label="Anchor">#</a> </span> </h2> <p>The same vendors publishing breakthrough numbers on LLM cyber capability are publishing the disclaimers in the same posts. Read both halves and the picture changes.</p>https://xn--kemetmller-feb.com/blog/anatomy-of-the-one-fox-toolkit/Wed, 11 Feb 2026 21:25:10 +0100https://xn--kemetmller-feb.com/blog/anatomy-of-the-one-fox-toolkit/<h2 class="relative group">Introduction <div id="introduction" class="anchor"></div> <span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100 select-none"> <a class="text-primary-300 dark:text-neutral-700 !no-underline" href="#introduction" aria-label="Anchor">#</a> </span> </h2> <p>When EclecticIQ analyzed a 2023 Cobalt Strike intrusion<sup id="fnref:1"><a href="#fn:1" class="footnote-ref" role="doc-noteref">1</a></sup> at Taiwan&rsquo;s Directorate General of Highways (MOTC), the most useful artifact wasn&rsquo;t the malware. It was a filesystem path leaked in the C2 logs:</p> <div class="highlight-wrapper"><div class="highlight"><pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">C:\Users\Test\Desktop\ONE-FOX集成工具箱_V1.0魔改版_by狐狸\gui_other\Cobalt_Strike_4.5\plugin\TaoWu\script\lazagne.exe</span></span></code></pre></div></div>https://xn--kemetmller-feb.com/blog/aviosoft-buffer-overflow/Mon, 26 May 2014 13:05:09 +0000https://xn--kemetmller-feb.com/blog/aviosoft-buffer-overflow/<div class="flex px-4 py-3 rounded-md shadow bg-primary-100 dark:bg-primary-900" > <span class="text-primary-400 pe-3 flex items-center" > <span class="relative block icon"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path fill="currentColor" d="M506.3 417l-213.3-364c-16.33-28-57.54-28-73.98 0l-213.2 364C-10.59 444.9 9.849 480 42.74 480h426.6C502.1 480 522.6 445 506.3 417zM232 168c0-13.25 10.75-24 24-24S280 154.8 280 168v128c0 13.25-10.75 24-23.1 24S232 309.3 232 296V168zM256 416c-17.36 0-31.44-14.08-31.44-31.44c0-17.36 14.07-31.44 31.44-31.44s31.44 14.08 31.44 31.44C287.4 401.9 273.4 416 256 416z"/></svg> </span> </span> <span class="dark:text-neutral-300" ><strong>Historical Content (2014):</strong> This article demonstrates classic stack-based buffer overflow exploitation on Windows XP SP3. Modern Windows systems include mitigations such as ASLR, DEP/NX, and CFG that would prevent these techniques from working directly. The concepts remain valuable for understanding exploit development fundamentals.</span> </div> <p>This post documents the process of developing a working exploit for a stack buffer overflow in Aviosoft Digital TV Player Professional 1.0. The vulnerability exists in the application&rsquo;s playlist file parser, which copies user-supplied data into a fixed-size stack buffer without bounds checking.</p>