Profile_bird

Hey there! sbrabez is using Twitter.

Twitter is a free service that lets you keep in touch with people through the exchange of quick, frequent answers to one simple question: What's happening? Join today to start receiving sbrabez's tweets.

Already using Twitter
from your phone? Click here.

sbrabez

  1. Reading "The Geometry of Innocent Flesh on the Bone" by Hovav Shacham. Awesome old papers available at http://cseweb.ucsd.edu/~hovav/dist/ 4:11 PM Dec 7th from web
  2. @xorlgr it's the shodan effect :) 3:16 PM Dec 7th from web in reply to xorlgr
  3. Linux kernel hacking lessons http://www.linuxchix.org/content/courses/kernel_hacking/. Nice reading 1:46 PM Dec 7th from web
  4. @EdiStrosar Yes, it seems it's just for MSFT Invisible Computing project. Thanks for you answer 5:58 AM Dec 7th from Echofon in reply to EdiStrosar
  5. Visual binary diff command: vimdiff <(xxd binary1) <(xxd binary2). Quite usefull to look for binary differences 2:32 AM Dec 7th from Echofon
  6. RT @rpisec: iCTF answers being posted on http://rpisec.net/wiki/ictf09 2:22 PM Dec 6th from web
  7. Seems Microsoft http://bit.ly/8Eh8FA use BSD ping source http://bit.ly/8rEGJq for his research 11:32 AM Dec 6th from web
  8. Finally, we finished at 12th place http://www.cs.ucsb.edu/~vigna/ictf/. 11:24 AM Dec 6th from web
  9. doing ucsb.edu ICTF2009 CTF 12:16 PM Dec 4th from web
  10. This patch test return code of unsetenv() calls in rtld checks so it can't be bypassed anymore 5:55 PM Nov 30th from web
  11. RT @cperciva: A FreeBSD Security Advisory will be coming soon for the recently announced local root bug: http://bit.ly/wFzfa 5:38 PM Nov 30th from web
  12. Now need to debug it 5:21 PM Nov 30th from web
  13. Finally as unsetenv() return -1, LD_PRELOAD in environ is not unset, so rtld check is bypassed. Great catch. 4:46 PM Nov 30th from web
  14. if not __merge_environ() return -1 because environ is corrupted, so unsetenv() too because the check at line 672 in getenv.c 4:44 PM Nov 30th from web
  15. In lib/libc/stdlib/getenv.c, unsetenv() call __merge_environ() which test if environ is well intialized with strchr(*env, '=') 4:40 PM Nov 30th from web
  16. @kingcope bypass rtld check http://bit.ly/5pf79n unsetenv("LD_PRELOAD") line 149 because he corrupt environ with garbage data 4:35 PM Nov 30th from web
  17. RT @kingcope: New exploit to be released: FreeBSD local r00t zeroday. 4:00 PM Nov 30th from web
  18. Recents FreeBSD kernel vunlerabilities talk at CONFidence2009 http://bit.ly/5bZ4rX by Frasunek http://bit.ly/hY07m. Nice reading 1:29 AM Nov 26th from Echofon
  19. Again http://ideone.com/MhgqgXUO 6:25 AM Nov 25th from Echofon
  20. So clueless http://ideone.com/qK9EmxZd 6:14 AM Nov 25th from Echofon
  • Name sbz
  • Location France
  • Web http://6dev.net
  • Bio \x53\x65\x63\x75\x72\x69\x74\x79\x20\x53\x61\x6d\x75\x72\x61\x69
104 Following 65 Followers 7 Listed
Moxie Marlinspike Will Drewry defcon parties Rodrigo Branco Ralf (RPW) mdowd ithilgore xorl %eax %eax kcope Alexander Sotirov Pedram Amini Google Code A Googler XSS Hacker corelanc0d3r Exploit Database Richard Bejtlich squareroots CTF Team Silvio Cesare Hak5 Nico Waisman Lee Hinman RSnake Stephen A. Ridley ekoparty BlackHatUSA Security4all yom Jonathan Brossard Sebastian Krahmer matasano Rob Fuller Jabra FX of Phenoelit Brad Spengler securityninja