Może Ci się spodobać
Together with @pnolsec and @ms_s3c we just published version 2.0 of Nautilus, our grammar fuzzer. It's now compatible w AFL++, can fuzz binary only targets, supports binary formats and scripting for non context free grammars & much more. Get it at: github.com/nautilus-fuzz/…
feroxfuzz: Structure-aware HTTP fuzzing library implemented in #Rust (@epi052) github.com/epi052/feroxfu… #rustlang #fuzzing #tool #informationsecurity #CyberSecurity #feroxfuzz
thank you for shareing
Big thanks to everyone who attended my thesis defense. If you missed it, here's a recording. I cover important topics like: * Why (human) memory matters when programming * How the Rust borrow checker works * How to make a lemon meringue pie youtube.com/watch?v=BrVk97…
youtube.com
YouTube
Stanford CS PhD thesis defense - "Revisiting Program Slicing with...
The regex crate is vulnerable to denial of service attacks when parsing untrusted regexes (CVE-2022-24713). We released version 1.5.5, fixing the issue. Read the advisory: blog.rust-lang.org/2022/03/08/cve…
Since a number of you have asked, here are the super-beautiful slides of Nikolas' Ph.D. defense for you to watch and remix. Enjoy! docs.google.com/presentation/d…
My student Nikolas Havrikov defended his Ph.D. thesis today! Nikolas' main contribution is _k-paths_, a means to assess and ensure structural input diversity in grammar-based fuzzing. Congratulations, Dr. @havrikov! 🎓🧑🎨🎉🥲 publications.cispa.saarland/2971/
After almost 2y of dev, we are glad to announce the release of Triton v0.9! Lifting to LLVM and back, expressions synthesis, Bitwuzla solver interface, x87 FPU specification, AST optimizations and so many more. github.com/JonathanSalwan…
"The Convergence of Source Code and Binary Vulnerability Discovery – A Case Study" A super-interesting study on applying static analysis tools on decompiler output. A step towards bridging the gap between binary and source analysis s3.eurecom.fr/docs/asiaccs22…
I wanted a way to monitor trending CVEs on Twitter So I built CVEtrends.com - data comes from Twitter + NIST NVD APIs - back-end: Python, Flask, PostgreSQL, and Redis - front-end: React + Bootstrap It's a quick MVP, but let me know your thoughts and feedback...
can't agree more
Linux is a kernel which you can't even attach debugger to, sprinkle breakpoints here and there and step through its code. Not even its kernel modules. This is literally the opposite of "the best", especially if you're a developer. Don't @ me.
ms's ebpf is based on ubpf, i run ubpf with afl for several minutes, a lot of crashes...
You can now use the Joern code querying engine for LLVM Bitcode! blog.llvm.org/posts/2021-02-… - Many thanks to @1101_debian of ShiftLeft for this contribution!
Slides from my LLVM CGO presentation are up (apologies for the sign-in, just enter anything for your name) icloud.com/keynote/09ZXbP…
In January I found, exploited, fixed and responsibly disclosed Linux kernel vulnerabilities in virtual sockets. Public announcement: seclists.org/oss-sec/2021/q… My PoC exploit gains LPE on Fedora Server 33 for x86_64 bypassing SMEP and SMAP. I'll share all the details later. Demo!
Software Security Papers!! Added more than 130 papers (440+ total atm) to the list and lots of grouping the last few days. Now more than 30 papers on Symbolic Execution and Android papers slowly making their way in. Check it out! github.com/AdaLogics/soft…
Today on @sigplan PL Perspectives, @johnregehr and his collaborators tell us YARPGen, their award winning work which uses a kind of fuzz testing to find compiler bugs. blog.sigplan.org/2021/01/14/fin…
Great article from Florian Weimer about the new x86-64 microarchitectural levels and how we are going to use them in RHEL9: developers.redhat.com/blog/2021/01/0…
developers.redhat.com
Building Red Hat Enterprise Linux 9 for the x86-64-v2 microarchitecture level | Red Hat Developer
One of the most important early decisions when building a Linux distribution is the scope of supported hardware. The distribution's default compiler flags are significant for hardware-platform
United States Trendy
- 1. #HardRockBet 3,126 posts
- 2. #AskFFT N/A
- 3. Scott 100K posts
- 4. StandX 1,760 posts
- 5. Full PPR 1,473 posts
- 6. #sundayvibes 6,711 posts
- 7. #2YearsWithGolden 26.1K posts
- 8. Nigeria 971K posts
- 9. Go Bills 7,164 posts
- 10. #NicxStrava 3,654 posts
- 11. JUNGKOOK IS GOLDEN 27.6K posts
- 12. Good Sunday 73.7K posts
- 13. Haaland 18.9K posts
- 14. Navy Federal N/A
- 15. Cherki 7,936 posts
- 16. Carlos Manzo 523K posts
- 17. Sunday Funday 3,979 posts
- 18. West Ham 8,203 posts
- 19. Bam Knight N/A
- 20. NYC Marathon 5,854 posts
Something went wrong.
Something went wrong.