You might like
First big result from our new CPU research project, a use-after-free in AMD Zen2 processors! 🔥 AMD have just released updated microcode for affected systems, please update! lock.cmpxchg8b.com/zenbleed.html
Almost a year after my defense, my PhD thesis "Automated Security Testing of Unexplored Targets Through Feedback-Guided Fuzzing" is now archived on the university server 🎉 We fuzzed Nvidia drivers, tcp servers, basebands, WebAssembly, .. Enjoy reading :) depositonce.tu-berlin.de/items/c3aaf2ec…
On the surface, analytical problem solving is my forte. Cicada 3301, Boxen, CTFs, 0day research, reversing highly complex targets etc The key to everything I've done has always been an intense focus on building up a deep intuitive understanding and useful mental models though
Time to disclose how @_p0ly_ and @vdehors hacked the @tesla car during the #Pwn2Own competition! It’s happening right now at @hexacon_fr. #HEXACON2022
#BHUSA Briefing "How To Tame Your Unicorn - Exploring and Exploiting Zero-Click Remote Interfaces of Modern Huawei Smartphones" exploits vulnerabilities to escape from the baseband and take over not only Android and the Linux kernel, but even TrustZone: informatech.co/3zVJV4t
In case you missed it like me,looks like erynian from Quarklabs released his snapshot fuzzer 'rewind' (written in Rust!) Included a step-by-step guide on how to reproduce CVE-2020-17087 (A Windows Kernel Cryptography Driver).So many fuzzers,thank you guys! github.com/quarkslab/rewi…
Dumped and extracted the Starlink UT firmware! Did I win a free stay at the SNOW_RANCH? Details in the blog post: esat.kuleuven.be/cosic/blog/dum…
In the 6 years since the car Jeep hack, there hasn't been a similar attack (no interaction -> arbitrary CAN messages). There has been some no interaction remote attacks (eg @esizkur against Tesla) and some arbitrary CAN message (eg @keen_lab against Telsa) but no full attacks.
VBOS (Vulnerabilities Below the Operating System)
CANSECWEST 2021 Folks can watch Ralf-Philippe Weinmann, @esizkur and Benedikt Schmotzle present "TBone: Drone vs. Tesla" here. The whitepaper is at tbone.sh youtu.be/krSj81thN0w
youtube.com
YouTube
CANSECWEST 2021: Tbone Drone vs Tesla - Ralf-Philippe Weinmann &...
The recording, our statement and the whitepaper are all available at tbone.sh now.
We (@byte_swap and I) will lowkey talk about our PWN2OWN automotive adventures, the WiFi 0click exploit we developed against Teslas in 2020 (patched since 2020-10), emulation setups for automotive and stunt hacking at CanSecWest 2021 (in the metaverse) on 2021-04-28 at 10am PST.
You should be able to watch it here, hopefully: cansecwest2021.sched.com/event/26958ca6…
We (@byte_swap and I) will lowkey talk about our PWN2OWN automotive adventures, the WiFi 0click exploit we developed against Teslas in 2020 (patched since 2020-10), emulation setups for automotive and stunt hacking at CanSecWest 2021 (in the metaverse) on 2021-04-28 at 10am PST.
🧵 Make yours and everybody else's lives slightly less terrible by having all your programs print out their internal stuff as pictures; ✨ a thread ✨
Benedikt (@byte_swap) and I will be giving a training on automotive security @_ringzer0 at the beginning of August 2021. Here are the details: ringzer0.training/automotive-sec… We skip the usual bits (infotainment) and dive straight into #AUTOSAR-based components.
This is a nice technical overview of the "Rust for Linux" project from one of its contributors. I'm excited for Android to have a Binder kernel driver written in Rust! security.googleblog.com/2021/04/rust-i…
Finde es gut, dass die Seuchenbekämpfung nun per Bundesgesetz gesteuert werden soll. Aber inhaltlich hält der Entwurf an vielen faulen Kompromissen der MPK fest und zementiert diese. Besonders problematisch scheint mir der Schwellenwert 100. Eine kurze Geschichte der Inzidenz 👇
United States Trends
- 1. Caleb Wilson N/A
- 2. Vesia 4,043 posts
- 3. Grammy 456K posts
- 4. Dizzy 11.5K posts
- 5. Darryn Peterson 1,128 posts
- 6. Kansas 22.3K posts
- 7. #FliffCashFriday 2,519 posts
- 8. End of 1 18.5K posts
- 9. Georgetown 2,427 posts
- 10. #drwfirstgoal N/A
- 11. James Watson 13.4K posts
- 12. Silver Slugger 11.9K posts
- 13. End 1 571K posts
- 14. Thank a Republican 1,505 posts
- 15. NBA Cup 5,832 posts
- 16. Capitol Police 16.7K posts
- 17. Collar 14.8K posts
- 18. #cthsfb N/A
- 19. Jaland Lowe N/A
- 20. Myles Rice N/A
You might like
-
Jeremy Fetiveau
@__x86 -
G. Geshev
@munmap -
Cedric Halbronn
@saidelike -
The Triton library
@qb_triton -
Markus Vervier
@marver -
h0wl
@h0wlu -
Tobias Scharnowski
@ScepticCtf -
@[email protected]
@buherator -
Alee Amini🐞
@AleeAmini -
Noam Rathaus 🌪️
@nrathaus -
Moritz Jodeit
@moritzj -
Grant H
@Digital_Cold -
Gyorgy Miru (Gym)
@gymiru -
Dimitri Fourny
@DimitriFourny -
Mateusz Krzywicki
@krzywix
Something went wrong.
Something went wrong.