Luke Paris – Medium

Luke Paris
in
Paradoxis

Writing Sliver C2 Extensions in Rust

TL;DR

6 min readJan 20, 2024

--

Writing Sliver C2 Extensions in Rust

--

Luke Paris
in
Paradoxis

YAFPC — Unauthenticated Remote Code Execution

Two separate flaws exist in the YAFPC (Yet Another Free PDF Composer) appliance which allows an attacker to gain remote code execution.

6 min readJan 14, 2023

--

YAFPC — Unauthenticated Remote Code Execution

--

Luke Paris

HackTheBox — “Blunder”

Write-up

5 min readOct 28, 2020

--

HackTheBox — “Blunder”

--

Luke Paris
in
Paradoxis

StegCracker 2 Released

A long time ago, on an awesome pentesting platform far far away, I had a problem. A problem many people that play CTF challenges can…

4 min readMar 25, 2019

--

StegCracker 2 Released

--

Luke Paris
in
Paradoxis

Baking Flask cookies with your secrets

A few weeks back, I and a friend of mine were discussing web frameworks and how he claimed to have made an ‘Impossible to Bypass’ login…

9 min readJan 26, 2019

--

1

Baking Flask cookies with your secrets

--

1

Luke Paris
in
Paradoxis

Fingerprinting Web Servers with Git

Before I begin, I’d like to give a little backstory on how I came to building the tool I’m about to show. Recently, I was doing an online…

3 min readMay 21, 2018

--

Fingerprinting Web Servers with Git

--

Luke Paris

Dear Recruiters

Before i begin my post, I’d like to point out I don’t have any ill intentions towards recruiters or the companies that employ them, in…

3 min readDec 13, 2017

--

Dear Recruiters

--

Luke Paris
in
Paradoxis

SHA2017 — A recap of insanity

To summarize the last five days of my life, I can’t think of anything other than “amazingly chaotic”, and I loved every minute of it. If…

5 min readAug 10, 2017

--

SHA2017 — A recap of insanity

--

Luke Paris
in
Paradoxis

The PHP module backdoor II — The fallout

A little over a week ago I published a post to my blog titled ‘Your interpreter isn’t safe anymore — The PHP module rootkit’.

6 min readJun 23, 2017

--

The PHP module backdoor II — The fallout

--

Luke Paris
in
Paradoxis

Backdooring the PHP interpreter

Editor’s note: The following post was written in 2017 at the very start of my career in Cyber Security. I was inspired to make a simple…

7 min readJun 12, 2017

--

4

Backdooring the PHP interpreter

--

4

Luke Paris

Luke Paris

Dutch cyber security specialist with a passion for software & penetration testing, my weapons of choice are Python and Linux.

Following

Help
Status
About
Careers
Blog
Privacy
Terms
Text to speech
Teams