I've put up the slides from my Zer0Con 2026 presentation on Administrator Protection. github.com/tyranid/info...

Damn, that was a while ago :)

In the final part of his blog series, @tiraniddo.dev tells the story of how a bug was introduced into a Windows API.

Code re-writes can improve security, but it’s important not to forget the security properties the code needs to enforce in the process.

projectzero.google/2026/02/gphf...

Part 2 of @tiraniddo.dev’s Windows Administrator Protection journey is here!

projectzero.google/2026/02/wind...

No security feature is perfect. @tiraniddo.dev reviewed Windows’ new Administrator Protection and found several bypasses.

projectzero.google/2026/26/wind...

I guess there’s something about Superman movies. Man of steel is one of the only movies I’ve ever walked out of. And that was with my wife so didn’t even need the solo advantage it was just that bad. Wasn’t planning on seeing the new one tbh.

Now if only you’d stop trying to make it out of date 😄 then again that’s what second editions are for.

Introduction to Network Trace Analysis 06: Kerberos it’s AUTH-some! | Microsoft Community Hub New to the series? Be sure to check out the previous posts!    Introduction to Network Trace Analysis Part 0: Laying the...

Good Monday morning tech nerds. One of my devs wrote *another* blog post about kerberos (I'm creating an army of crazy bloggers). This one you might consider bookmarking.

A Look in the Mirror - The Reflective Kerberos Relay Attack It is a sad truth in IT security that some vulnerabilities never quite want to die and time and time again, vulnerabilities that have long been fixed get revived and come right back at you. While rese...

🚨 Our new blog post about Windows CVE-2025-33073 which we discovered is live:

🪞The Reflective Kerberos Relay Attack - Remote privilege escalation from low-priv user to SYSTEM with RCE by applying a long forgotten NTLM relay technique to Kerberos:
blog.redteam-pentesting.de/2025/reflect...

Sure but maybe it shouldn’t be remembering them wholesale in the first place?

I despair that in the UK you now need ID to buy a cutlery set with normal non-sharp table knives. And if they ban sharp points on kitchen knives I assume they’ll ban metal files so you can’t grind a new point on them. I just don’t see how it really helps other than pandering to the tabloids.

Enhance your application security with administrator protection Introduction Administrator protection is a new Windows 11 platform security feature that aims to protect the admin users on the device while still allowing them to perform the necessary functions whic...

We are removing default admin in Windows 11, get your apps ready now

blogs.windows.com/windowsdevel...

The distinction without a difference.

@tiraniddo.dev and Eugene Lim—authors of Windows Security Internals and From Day Zero to Zero Day—are at Off-By-One doing what they do best: giving keynotes and running a smart device hacking village, respectively.

offbyone.sg

Maybe I’ll pop down to sf for rsa tomorrow. I’ve fortunately never gone before but this is my last chance and I really need a new ai security product.

I apologize for the void moaning back 😄

To be fair they are specialisms not everyone can be both. I’ve know quite a few people who are the exact opposite.

Even funnier that’s it’s Kneecap. What does she think their name references?

Microsoft Recall on Copilot+ PC: testing the security and privacy implications A look at the risks and tradeoffs with Microsoft Recall.

I took a look at the changes to Microsoft Recall, which is rolling out to compatible Windows devices soon.

Photographic memory that stores all your deleted messages, keystrokes etc 😅

doublepulsar.com/microsoft-re...

You mean the iPhone with signal on it?

When they were talking about the UK-US trade deal that could be struck after brexit they really meant only 10% tariffs instead of 20%

GitHub - decoder-it/KrbRelayEx-RPC Contribute to decoder-it/KrbRelayEx-RPC development by creating an account on GitHub.

KrbRelayEx-RPC tool is out! 🎉
Intercepts ISystemActivator requests, extracts Kerberos AP-REQ & dynamic port bindings and relays the AP-REQ to access SMB shares or HTTP ADCS, all fully transparent to the victim ;)
github.com/decoder-it/K...

Good. When Microsoft actually play fair in this I’m sure it’ll be welcomed. A blog post about future plans isn’t a substitute.

And that photo really seals it, "Hi poors, how are you? *aside to aide* They can't jump the fence can they?"

Invoke EU right to be forgotten?

Tbh the real cowardice is not changing it outright for all English locales and instead putting it in parentheses. They’re already angering people with their dumb decision I doubt they could make it worse by clearly throwing in the towel.

What does Bing call it? Oh wait no one cares.

Understanding Network Access in Windows AppContainers Posted by James Forshaw, Project Zero Recently I've  been delving into the inner workings of the Windows Firewall. This is interesting to ...

TBH googleprojectzero.blogspot.com/2021/08/unde... is probably more comprehensive.

I can now see why my email offering to give the NSA exclusive access to an ultra rare uber 1337 EoP in Windows NT 3.1 bounced 😭

Truly the dumbest timeline.

When physical risks are "There's more guns than people" I could perhaps see some hesitancy. Though, there are people like AOC pushing back. However, most are too set in their ways and too beholden to their benefactors that they don't want to rock the boat. It might even be good for them.