Dawson Medin
Vulnerability Researcher & Offensive Security Operator
Publicly Available Research & CVEs
CVE-2023-32765: Netwrix PolicyPak LPE
Discovery of a critical vulnerability in the Netwrix PolicyPak Client-Side Extensions (CSE) allowing for local privilege escalation to NT AUTHORITY\SYSTEM. This research highlights the risks of insecure client-side service configurations in enterprise environments.
Vendor AdvisoryCVE-2022-4149: Netskope Client LPE
Research into the Netskope Client for Windows revealed a race condition during service restarts. By leveraging Windows pseudo-symlinks, an unprivileged user could redirect log file creation to gain SYSTEM level access.
Vendor AdvisoryCVE-2021-3895: Rapid7 Insight Agent LPE
Identified an insecure DLL loading vulnerability in the Rapid7 Insight Agent. Standard users could exploit this to execute arbitrary code with SYSTEM permissions, compromising the entire Windows host.
Release NotesTechnical Hobbies & Interests
- Vulnerability Research: Deep-diving into Windows OS internals and third-party enterprise application security.
- Cyber Homelab: Operating a sophisticated AD environment for testing exploit chains and defensive controls.
- Computer Repair: Maintaining hands-on hardware knowledge through custom builds and component-level repairs.
- Technical Mentorship: Giving back to the community by helping others navigate the complex world of cybersecurity.