May 2020,

With the release of the May 2020 security updates, Microsoft has released fixes for 111 vulnerabilities in Microsoft products. Of these 111 vulnerabilities, 13 are classified as Critical, 91 as Important, 3 as Moderate, and 4 as Low.

April 2020,

With the release of the April 2020 security updates, Microsoft has released fixes for 113 vulnerabilities in Microsoft products. Of these 113 vulnerabilities, 15 are classified as Critical, 93 as Important, 3 as Moderate, and 2 as Low.

March 2020,

In this month, March of 2020, Microsoft has published more than hundred vulnerabilities in which more than twenty vulnerabilities are rated as critical and more than eighty vulnerabilities are rated as important and three vulnerabilities are rated as moderate.

This blog is about an Interesting CTF challenge that I solved a few months back. This challenge is from the famous PEACTF 2019 and It was the last challenge of the CTF.

In this walkthrough, we will see about the manual exploitation of the CVE-2017-0143 (EternalBlue) vulnerability focused on SMBv1, which is released on March 14, 2017, by the Shadow Brokers. The first appearance of this group was in the summer of 2016. they are responsible for the leakage of the hacking toolkit from National Security Agency (NSA) which contain several of 0days which is focused on Microsoft product. By using this vulnerability hacker created a lot of ransomware like WannaCry, Petya and NotPetya.