You might like
.@TashitaSoftSec 's mission is to revolutionise how security research is performed, by developing the most advanced vulnerability research frameworks. Join us and become part of an epic adventure! Career opportunities: tashita.net/careers/ DMs are open!
My mates @ckrielle and @l34n_d3v just dropped i0.rs, a new blog focused on high-quality security research. If you're into novel technical content definitely check it out.
Hello everyone, @l34n_d3v and I are dropping our new blog i0.rs, where high-quality infosec articles will be posted. The blog is open to submissions from everyone. The criteria for accepting an article are technical depth, impact, and novelty
Make CSAW EU CTF Finals onsite again. Also sasAPT sasAPT sasAPT
🥇🥈🥉 CSAW’24 Europe : Congratulations to the CTF Finalists ! We're delighted to announce the 14 finalist teams in the Capture the Flag competition. 🍀 Good luck to all for the final!! The final 36-hour competition will be held online.
Even though they missed out on registration, @aahmad097, @Rembown, @m40282845, @0xShad3, @thegrandpew (@ht3labs) gave quite the demonstration of their exploit prowess against the QNAP TS-464 & the Synology BeeStation. We look forward to seeing their work in future competitions
Looks like @HexRaysSA is releasing IDA 9 and drastically increasing the prices. My current IDA update is 3k EUR the new IDA 9 equivalent will be 5k EUR. 😂😂😂
The past year has been amazing. From marriage, to Pwn2Own to a Pwnie Award, I'm so grateful. I'm using the money I've won from hacking competitions, bounties, & RB for two ppl to travel & attend Hexacon, the premier offensive security con in Paris, France. forms.gle/zt9RaR7EEvTxWG…
The time has come, and with it your reading material for the week. Phrack #71 is officially released ONLINE! Let us know what you think! phrack.org/issues/71/1.ht…
I just released the blog explaining how I leveraged CVE-2022-22265 in the Samsung npu driver. Double free to achieve UAF over signalfd + cross cache + Dirty Page Table + code inject into libbase.so for execution by init. Hope you can enjoy it soez.github.io/posts/CVE-2022…
What a weekend it was! We are super proud of the results. It was great playing alongside top-notch players in the CTF community! 🥳
Shout-out to @GoogleVRP for yet another amazing competition and of course, to our awesome friends from @0tolerance_ctf & @redrocket_ctf . Cya in Malaga!
POC for CVE-2024-27804 Wanted to share it after finishing a blogpost. but decided to share it. r00tkitsmm.github.io/fuzzing/2024/0…
I reported CVE-2024-27804, an iOS/macOS kernel vulnerability that leads to the execution of arbitrary code with kernel privileges. Will publish the POC soon. support.apple.com/en-gb/HT214101
In a new guest blog, #Pwn2Own winner @_manfp details CVE-2024-2887 - a bug he used to exploit both #Chrome and #Edge during the contest on his way to winning Master of Pwn. He breaks down the root cause and shows how he exploited it. Read the details at zerodayinitiative.com/blog/2024/5/2/…
A couple of weeks ago our team participated in @CSCGreece, an onsite CTF in Greece. Our team crushed it🏆! We hope to see more onsite events like that in Greece. Kudos to everyone involved!
In this post I'll use CVE-2023-6241, a vulnerability in the Arm Mali GPU that I reported last November to gain arbitrary kernel code execution from an untrusted app on a Pixel 8 with MTE enabled. github.blog/2024-03-18-gai…
Do you use a virtual machine to browse dangerous links safely? If you use the Chrome browser inside that virtual machine, is it secure enough? As you might have guessed, the answer is not so much. We chained six unique CVEs from 2023 listed below. • Chrome Renderer RCE :…
Last year I discovered multiple bugs in virtio-net for VirtualBox (CVE-2023-22098, CVE-2023-22099, CVE-2023-22100) and wrote a 100% reliable VM escape using an out-of-bounds write (with ASLR defeat). Published the exploit code: github.com/google/securit…
🔥👏
I saw the CFP 2 days before the deadline, but still managed to cook something up. I am very happy that my article "Wrapping GDB with Python to Easily Capture Flags" is in PagedOut! It's not a novel CTF technique, but I hope I can spread it more with this publication.
United States Trends
- 1. GTA 6 60.8K posts
- 2. GTA VI 21.5K posts
- 3. Rockstar 52.7K posts
- 4. Antonio Brown 5,901 posts
- 5. GTA 5 8,705 posts
- 6. Nancy Pelosi 129K posts
- 7. Ozempic 19.2K posts
- 8. Paul DePodesta 2,183 posts
- 9. Rockies 4,265 posts
- 10. #LOUDERTHANEVER 1,541 posts
- 11. Grisham 1,934 posts
- 12. GTA 7 1,360 posts
- 13. Justin Dean 1,871 posts
- 14. Kanye 26.5K posts
- 15. Free AB N/A
- 16. Grand Theft Auto VI 44.5K posts
- 17. Fickell 1,117 posts
- 18. Elon Musk 235K posts
- 19. Silver Slugger 3,390 posts
- 20. RFK Jr 31.3K posts
Something went wrong.
Something went wrong.