Davisa

Great topic! Moving from web pentest to Windows CVE research is a big shift. Start by mastering basics: PE structure (with PEview), debugging with x64dbg/WinDbg, and dynamic analysis via breakpoints on import APIs. Use Frida for Lua hooks and IDA/Ghidra to map control/data flow. Practice on public PoCs and write small notes per function. When you need a break, try Slope Game for a quick reset: Slope Game.