Hi, I’m Michael Maltsev, also known as m417z. I’m interested in reverse engineering and vulnerability research of any kind, from the low level world of operating systems to the high level world of front-end and browsers.

Some of the things I did

Research

• Research of the SMBGhost Windows kernel SMB bug (CVE-2020-0796) and discovery of the SMBleed bug (CVE-2020-1206). Writeups and code:
  • Exploiting SMBGhost for LPE: Writeup, POC Source Code.
  • Exploiting SMBleed: Writeup, POC Source Code.
  • Combining SMBGhost and SMBleed for RCE: Part 1, Part 2, POC Source Code.
• Webcam interception and protection in kernel mode in Windows: Paper, VB2019 presentation (slides).

Publications

• Paged Out! #2: C as a portable assembly - Porting 32-bit assembly code to 64-bit (PDF, page 8).
• Paged Out! #3: winapiexec - Run WinAPI functions from the command line (PDF, page 25).

Software

• Windhawk - The customization marketplace for Windows programs.
• 7+ Taskbar Tweaker - A Windows taskbar customization tool.
• Unchecky - A tool for Windows that automatically unchecks unrelated offers to keep potentially unwanted programs out of the computer. Was acquired by Reason Cybersecurity.
• Ramen Software - More software for Windows.

Other projects

• Winbindex - The Windows Binaries Index - An index of Windows binaries, including download links for executables such as exe, dll and sys files.
• NtDoc - Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers.
• BitSniff - A tool for detecting Bitcoin-related communications in encrypted traffic, developed with Niko Kudriastev during the Bitcoin emBassy Hackathon. Technical details, presentation.
• Contributor of the MinHook hooking library for Windows.
• Microsoft Patch Tuesday Countdown.