January 19, 2024
January 19, 2024 Reverse engineering expert system by @juanandres_gs free to play with (ChatGPT plus subscription required) at https://t.co/haFXmZWEnw...
January 18, 2024
January 18, 2024 https://blog.quarkslab.com/pixiefail-nine-vulnerabilities-in-tianocores-edk-ii-ipv6-network-stack.html 1/ A technical writeup on @Meta’s...
January 17, 2024
January 17, 2024 Ostorlab/ostorlab: Ostorlab is a security scanning orchestrator for the modern age. GitHub - Ostorlab/ostorlab: Ostorlab is a security...
January 16, 2024
January 16, 2024 TLDR: If you didn’t apply Ivanti Connect Secure VPN mitigation on January 10th reasonable chance you were exploited - mass exploitation by...
January 15, 2024
January 15, 2024 Nervous about heading thru the Bab?Just punch in "ALL CHINESE CREW" and enjoy the ride. pic.twitter.com/C4uCFTG0iI— TankerTrackers.com, Inc....
January 14, 2023
January 14, 2023 This is interesting in that it has taken a year for cybercriminals to convert a public PoC into a working exploit. Not sure what it means,...
January 13, 2024
January 13, 2024 Our AppSec team is sharing things they wish they'd known before using Semgrep. Follow our seven-step plan for bootstrapping this static...
January 12, 2024
January 12, 2024 Holy cow! New debugger just dropped 👀!https://t.co/AwHhxEPQdp— j j (@mistymntncop) January 12, 2024 I threw together a quick blog post...
January 11, 2024
January 11, 2024 "My" CVE-2024-20692 has just been fixed by Microsoft. TLDR: Network secrets can be stolen from the Local Security Authority Subsystem...
January 10, 2023
January 10, 2023 Exploit dev/bug hunting friends: what are your favourite vuln write-ups from the past few years? The more the merrier =) (Across any...
January 9, 2024
January 9, 2024 Visualising ext4 Visualizing ext4What does ext4 look like? Big Tech has already made enough money in 2024 to pay all its 2023 fines Big Tech...
January 8, 2024
January 8, 2024 Quick test of Safari JavaScript WASM RCE bug from Operation Triangulation (CVE-2023-32435) pic.twitter.com/UPEvTLab41— Alisa Shevchenko...
January 7, 2024
January 7, 2024 Exploiting Google Chrome extensions for privilege escalationInteresting blog post by @deryilzhttps://t.co/6ow4vsiW8o#chrome #infosec...
January 6, 2024
January 6, 2024 i was trying to explain what a capybara was to my gf’s french aunt last night, so googled “french for capybara” and the first thing that came...
January 5, 2024
January 5, 2024 Decompiling History A better history of decompilation, curtesy of Dr Eugene Spafford. This includes work done since the 1960s, and is really...
December 4, 2023
December 4, 2023 30 Years of Decompilation and the Unsolved Structuring Problem: Part 1 30 Years of Decompilation and the Unsolved Structuring Problem: Part...
January 3, 2023
January 3, 2023 On the outside, it's just any old briefcase. 💼But on the inside, it's a secure telephone system used for delivering top secret messages to...
January 2, 2024
January 2, 2024 Communist spy at the heart of the BBC: 'Agent Vora' was the 'attractive and voluptuous' churchgoer who was a dead ringer for Cilla Black that...
January 1, 2024
January 1, 2024 Happy New Year It’s the 20th anniversary of the release of userland exec(). I’m still quite happy with the write up for this, and the code....
December 31, 2023
December 31, 2023 Happy New Years! They were worthless the entire time https://t.co/yCsHnXbujL— Charles J. Moore (@charles270) December 28, 2023 NFTs died a...
