
When Your Hypervisor Takes a Nap: VMware ESXi's Sleepy Guest RCE (CVE-2024-22271)
This week, we're diving deep into a terrifying VMware ESXi vulnerability that lets a malicious guest VM escape and execute code on the host.
shubham@soc:~$
// 01 — EXPERIENCE
A timeline of my journey in Cybersecurity and IT Operations.
// 02 — PROJECTS
A snapshot of recent work — security tools, marketplaces, and automation. Click a card to see the full development timeline.
// 03 — CHALLENGE
Two challenges for recruiters, analysts, and curious minds: a warm-up transmission, and a three-level operation with an actual coffee at the end.
// ciphertext
V0tIIFNEVlZTS1VEVkggTFY6IEVPWEggV0hEUA==
// operation: coffee run
Three encrypted keys, three techniques. Clear all levels and coffee's on me — seriously.
Level 1 — RECON
An exfiltrated file was encoded before transmission. Recover key 1.
S0VZIDEgT0YgMzogRklSRVdBTEw=
Level 2 — DECRYPT
lockedLevel 3 — FORENSICS
locked// 04 — INTEL FEED
Weekly cybersecurity writing — incident analysis, vulnerability disclosures, and defensive playbooks.
// 05 — SKILLS
Tools and technologies I use to secure and build systems.