Antonio Cocomazzi, Author at SentinelOne

Antonio Cocomazzi

Antonio Cocomazzi is a System Engineer at SentinelOne with a particular interest in malware analysis. He also conducts independent research with a focus on discovering new vulnerabilities and, more in general, in digging into Windows OS internals. The main focus of his activities is on researching new ways of attacking Windows operating systems and finding cutting edge techniques to reach stealthiness in heavily monitored environments. He enjoys reversing any kind of binary from packed malware to Windows internal components. He likes playing online CTFs and writing/publishing offensive tools and security research on his Github channel, mostly based on Windows OS.

Adversary

Relaying Potatoes: Another Unexpected Privilege Escalation Vulnerability in Windows RPC Protocol

Antonio Cocomazzi / April 26, 2021

A newly-discovered NTLM relay attack makes every Windows system vulnerable to an escalation of privileges attack, and there’s no patch in sight.