shellcode_it's profile picture.

SimoneC

@shellcode_it

SimoneC أعاد

Mining cryptocurrency with energy from the solar rays of the Sun, bouncing our packets through the ionosphere w/@Jennifer_Arcuri

hackerfantastic's tweet image. Mining cryptocurrency with energy from the solar rays of the Sun, bouncing our packets through the ionosphere w/@Jennifer_Arcuri
hackerfantastic's tweet image. Mining cryptocurrency with energy from the solar rays of the Sun, bouncing our packets through the ionosphere w/@Jennifer_Arcuri
hackerfantastic's tweet image. Mining cryptocurrency with energy from the solar rays of the Sun, bouncing our packets through the ionosphere w/@Jennifer_Arcuri

SimoneC أعاد

If you are hard at work scanning the internet for CVE-2021-41773 (apache 2.4.49 path traversal thing).. also try /icons instead of just /cgi-bin, enjoy the increased success rate. :-P


SimoneC أعاد

How malware gets into the App Store and why Apple can't stop that #MobileSecurity #iOSsecurity by @illusionofcha0s habr.com/ru/amp/post/58…


SimoneC أعاد

Out of bounds write in V8 | Tested against Samsung Internet Browser v15.0.2.47, which does not yet have Google's patch (PoC CVE-2021-30632) #MobileSecurity #AndroidSecurity by @Zeusb0x pastebin.com/wCNA6UAB


SimoneC أعاد

Cool Windows Internals trick I found over the weekend. If you name a folder "anything.{D2035EDF-75CB-4EF1-95A7-410D9EE17170}", Explorer will crash when you try to enter that folder.


SimoneC أعاد

Ever wondered which flags you should use for your C compiler to: - detect the maximum number of bugs or potential security problems? - enable security mitigations in binaries? - enable runtime sanitizers? We got you covered for GCC, Clang and MSVC! airbus-seclab.github.io/c-compiler-sec…

AirbusSecLab's tweet image. Ever wondered which flags you should use for your C compiler to:
- detect the maximum number of bugs or potential security problems?
- enable security mitigations in binaries?
- enable runtime sanitizers?
We got you covered for GCC, Clang and MSVC!
airbus-seclab.github.io/c-compiler-sec…

SimoneC أعاد

I've published the article covering my talk at @ZeroNights! Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG a13xp0p0v.github.io/2021/08/25/lkr… Slides: a13xp0p0v.github.io/img/CVE-2021-2… PoC exploit demo video: youtube.com/watch?v=O6rsuG… Enjoy!

a13xp0p0v's tweet image. I've published the article covering my talk at @ZeroNights!

Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG
a13xp0p0v.github.io/2021/08/25/lkr…

Slides: 
a13xp0p0v.github.io/img/CVE-2021-2…

PoC exploit demo video: youtube.com/watch?v=O6rsuG…

Enjoy!
a13xp0p0v's tweet image. I've published the article covering my talk at @ZeroNights!

Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG
a13xp0p0v.github.io/2021/08/25/lkr…

Slides: 
a13xp0p0v.github.io/img/CVE-2021-2…

PoC exploit demo video: youtube.com/watch?v=O6rsuG…

Enjoy!
a13xp0p0v's tweet image. I've published the article covering my talk at @ZeroNights!

Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG
a13xp0p0v.github.io/2021/08/25/lkr…

Slides: 
a13xp0p0v.github.io/img/CVE-2021-2…

PoC exploit demo video: youtube.com/watch?v=O6rsuG…

Enjoy!
a13xp0p0v's tweet image. I've published the article covering my talk at @ZeroNights!

Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG
a13xp0p0v.github.io/2021/08/25/lkr…

Slides: 
a13xp0p0v.github.io/img/CVE-2021-2…

PoC exploit demo video: youtube.com/watch?v=O6rsuG…

Enjoy!

SimoneC أعاد

Ever wanted to exploit Windows 10 with CVE-2021-31956? Obsessive about kernel memory layouts? research.nccgroup.com/2021/08/17/cve… is now up focusing on exploit reliability, stability and detection! #windows

Blog: CVE-2021-31956 Exploiting the Windows Kernel (NTFS with WNF) - Part 2 - including thoughts on detection by @alexjplaskett research.nccgroup.com/2021/08/17/cve…

NCCGroupInfosec's tweet image. Blog: CVE-2021-31956 Exploiting the Windows Kernel (NTFS with WNF) - Part 2 - including thoughts on detection by @alexjplaskett  research.nccgroup.com/2021/08/17/cve…


SimoneC أعاد

Here is my PoC for exploiting the @Razer device driver installation LPE using a generic Android phone instead of a stock Razer device. gist for the gadget setup: gist.github.com/tothi/3cdec3ac… Original version using a Razer device was presented by @j0nh4t. Awesome finding, I like it.


SimoneC أعاد

curious how Android phones interact with embedded hardware (camera, sensors, etc) natively? libhardware tests show how it’s done. why does this matter? APTs persist (or re-exploit) as root and *not* as an individual app. it’s much harder to detect. android.googlesource.com/platform/hardw…


SimoneC أعاد

Google CTF Fullchain has been a good opportunity for me to learn PartitionAlloc and Chrome SBX. We did not solve the challenge in time, but finished it nonetheless. Find our write-up (with @ntrung03) here! ret2.life/posts/Google-C… trungnguyen1909.github.io/blog/post/GGCT…


SimoneC أعاد

I wrote a 1day exploit for chrome CVE-2020-16040. It includes a typer hardening bypass. Works for chrome version <= 87.0.4280.88 github.com/r4j0x00/exploi…

rajxnull's tweet image. I wrote a 1day exploit for chrome CVE-2020-16040. It includes a typer hardening bypass. Works for chrome version &amp;lt;= 87.0.4280.88
github.com/r4j0x00/exploi…

SimoneC أعاد

Kali Linux is not a skill


SimoneC أعاد

CVE-2021-1732 Exploit Windows Win32k Elevation of Privilege Vulnerability github.com/KaLendsi/CVE-2… Poc & Exp report: bbs.pediy.com/thread-266362.…

blackorbird's tweet image. CVE-2021-1732 Exploit
Windows Win32k Elevation of Privilege Vulnerability
github.com/KaLendsi/CVE-2…
Poc &amp;amp; Exp report:
bbs.pediy.com/thread-266362.…

SimoneC أعاد

Patch sudo. (Have backups prepped just in case you, you know, break everything) wget sudo.ws/dist/sudo-1.9.… tar xzvf sudo-1.9.5p2.tar.gz cd sudo-1.9.5p2 ./configure make && sudo make install bash -c "sudo --version"


SimoneC أعاد

Google's ReCAPTCHA will automatically fingerprint Burp Suite Proxy and raise the challenge difficulty to the maximum, making analysis of the app very irritating. To fix this, go into your Burp Suite Project Configurations and activate TLS Passthrough for google.com

c3l3si4n's tweet image. Google&apos;s ReCAPTCHA will automatically fingerprint Burp Suite Proxy and raise the challenge difficulty to the maximum, making analysis of the app very irritating.

To fix this, go into your Burp Suite Project Configurations and activate TLS Passthrough for google.com

SimoneC أعاد

[UPDATE] AppSync Unified 90.0 — Massive rewrite of AppSync Unified that now fully supports all current iOS 14.x versions, while also improving the experience for all other iOS versions (even iOS 5/6!) reddit.com/r/jailbreak/co…


SimoneC أعاد

do you want to know about? integer overflow integer underflow Out of bound Read Out of bound Write Double Free Use After Free Memory leaks here is the damn vulnerable c program i coded to explain AFL fuzzing in my videos: github.com/hardik05/Damn_… fuzz it using AFL and see :)


SimoneC أعاد

We've confirmed exploitability of Windows Pre-Auth RDP bug (CVE-2019-0708) patched yesterday by Microsoft. Exploit works remotely, without authentication, and provides SYSTEM privileges on Windows Srv 2008, Win 7, Win 2003, XP. Enabling NLA mitigates the bug. Patch now or GFY!


Loading...

Something went wrong.


Something went wrong.