Hexale.org

Welcome to Hexale! My name is Hernan Ochoa, I'm an independent information security researcher/consultant and this web site contains some of my tools, papers and presentations about security & reverse engineering.

NEW!: Windows SMB NTLM Authentication Weak Nonce Vulnerability Security Advisory and Exploit (describes how the authentication mechanism used by Windows has been flawed for at least 17 years, allowing attackers to bypass remote authentication leading to read/write access to files and remote code execution)