Windows

• IRQLs Close Encounters of the Rootkit Kind Jan 3

• Work Items & System Worker Threads - 'Practical Reverse Engineering' solutions - Part 3 Mar 10
• System Threads and their elusiveness. 'Practical Reverse Engineering' solutions - Part 2 Feb 11
• Linked List in the Kernel: 'Practical Reverse Engineering' solutions - Part 1 Jan 1

• Kernel exploitation: weaponizing CVE-2020-17382 MSI Ambient Link driver Sep 24