Yazid's notes

Circumventing Leak Restrictions and Breaking KASLR on Windows 11 24H2 using an HVCI-compatible Driver with Physical Memory Access

Silly Method to Obtain NTOS Base Address by Leveraging the eneio64.sys Driver

Posted by Yazid on June 9, 2025

Exploiting eneio64.sys Kernel Driver on Windows 11 by Turning Physical Memory R/W into Virtual Memory R/W

POC Write-Up on eneio64.sys Driver Exploitation

Posted by Yazid on March 8, 2025

Best EDR Of The Market V3 🏴‍☠️🥇

Moving to the Kernel: Introducing the BEOTM driver and its capacities.

Posted by Yazid on January 14, 2025

Best EDR Of The Market V2 🐉

Features, updates & enhancements in Best EDR Of The Market latest release.

Posted by Yazid on April 14, 2024

Catching Potential Indirect Syscalls

Leveraging Hardware Breakpoints, Vectored Exception Handling & Stack Pointers for Catching Potential Indirect Syscalls.

Posted by Yazid on February 22, 2024

Introducing the Best EDR Of The Market Project ⚔️

The Best EDR Of The Damn Market is now on track !! 🎉

Posted by Yazid on November 19, 2023

[CTF] Tenable CTF 2023 - Rose

Cookie crafting + Admin account takeover & Server Side Template Injection on Flask.

Posted by Yazid on August 12, 2023

How to Craft Your Own Windows x86/64 Shellcode with Visual Studio

Demonstrating how you could craft & launch a customized shellcode to target Windows x86/64 artefacts.

Posted by Yazid on July 23, 2023

[CTF] HackTheBox - OnlyForYou (Medium)

Write-Up for HackThebox's OnlyForYou Machine.

Posted by Yazid on May 31, 2023