Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @0vercl0k
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @0vercl0k
-
Prikvačeni tweet
Here is an exploit chain I wrote for Firefox that gets RCE via CVE-2019-9810 and escape the sandbox with CVE-2019-11708/CVE-2019-9810. Once compromised, it drops a payload and injects privileged JS code in already/newly created tabs. https://github.com/0vercl0k/CVE-2019-11708 …pic.twitter.com/LeAOCgqpMG
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Yearly reminder that https://ntdiff.github.io/ by
@PetrBenes is awesome sauce
pic.twitter.com/kp0JmavIx4
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
ISC-DHCP 4.4.2 released today which fixes ~30 reference count leaks I found whilst looking for variants of CVE-2018-5733. Good bug type for static analysis - I used
@Semmle to look for inter-function paths that could return instead of releasing references https://downloads.isc.org/isc/dhcp/4.4.2/dhcp-4.4.2-RELNOTES …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
Been waiting to announce: I'll be presenting "Forget the Sandbox Escape: Abusing Browsers from Code Execution" at this year's BluehatIL This talk will look at what attacks you can pull off in browsers without needing a sandbox escape I will also be demoing a POC of persistencehttps://twitter.com/BlueHatIL/status/1219306208554889216 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
Recent Firefox zero-day (used in targeted attacks in the wild) (CVE-2019-17026) mercurial changeset fix: https://hg.mozilla.org/releases/mozilla-release/rev/8260da04c9b13f7c0e9cc6984a75e689b5fcb8c8 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
My team is once more hiring vulnerability researchers for our Redmond WA office. This is for low-level OS/platform security research work on Windows and Azure. More details on what we do at https://www.linkedin.com/pulse/vulnerability-research-scale-windows-arthur-wongtschowski/ …. Apply directly at https://aka.ms/AA6z0a8 or DM me if interested!
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
Full analysis and exploit for Windows kernel ws2ifsl use-after-free (CVE-2019-1215) by our researcher
@flxflndy https://labs.bluefrostsecurity.de/blog/2020/01/07/cve-2019-1215-analysis-of-a-use-after-free-in-ws2ifsl/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
Old stuff, new blogpost: Breaking PHP mt_rand() with mathhttps://www.ambionics.io/blog/php-mt-rand-prediction …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
I've just released ccrawl (http://github.com/bdcht/ccrawl ). Its a
#clang-based tool that allows to collect and query various properties of C/C++ data structures, and to translate them for example to ctypes (including on C++ class instances.)Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Here is an exploit for LPE CVE-2019-1184 in case anybody else is interested in this cool bug: https://github.com/0vercl0k/stuffz/blob/master/CVE-2019-1184/CVE-2019-1184.cc …pic.twitter.com/Osr4Rk2V8z
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
Starting 2020 with a major website update @ https://w3challs.com and 3 new pwn challenges from
@__awe &@0xGrimmlin ! Enjoy!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Axel Souchet proslijedio/la je Tweet
libFuzzer fuzzing SQLite in the browser using WebAssembly: https://jonathanmetzman.github.io/wasm-fuzzing-demo/sqlite/sqlite.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
The video from my talk on structure-aware fuzzing at Black Hat was posted: https://www.youtube.com/watch?v=S8JvzWDnjc0 … I mostly cover libprotobuf-mutator but also discuss libFuzzer custom mutators.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
New WinDbg Preview rolling out! Biggest addition - a new timelines window for visualizing when things like exceptions, memory accesses, breakpoints, and function calls occur in your trace. Also quick at-a-glance tooltips for each event just by hovering! https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/windbg-timeline-preview …pic.twitter.com/kw9OxM07Rl
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
You can now install Miasm using "pip install miasm" ! Seehttps://github.com/cea-sec/miasm/releases/tag/v0.1.3 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
Project Zero blog: "SockPuppet: A Walkthrough of a Kernel Exploit for iOS 12.4" by Ned Williamson (
@NedWilliamson) -- https://googleprojectzero.blogspot.com/2019/12/sockpuppet-walkthrough-of-kernel.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
We open sourced PathAuditor: a tool for Linux that
@rozek_marta and I worked on this summer. Tl;dr: you can use it to instrument root daemons and find insecure file access patterns like CVE-2019-3461. Check out the code: https://github.com/google/path-auditor … Blog post:https://security.googleblog.com/2019/12/detecting-unsafe-path-access-patterns.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
Hey there, I'm currently looking for a new Senior
#DevOps or#DevSecOps role! Preferably in Edinburgh, or UK Remote. If you're currently looking for new people, or know someone looking I'd love to hear from you :) Some details in this thread
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Sounds like the Terminal app finally ships with split panes and default keybindings (alt+shift+- / alt+shift++)
https://github.com/microsoft/terminal/releases …pic.twitter.com/6HlIAyyEh8
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Axel Souchet proslijedio/la je Tweet
The scathing absence of Python 3 support in libptrace has been resolved as of now with the release of 1.0-rc2 Time to rest. I'm convinced that dealing with NSIS scripting past midnight would mortify even the hardiest of Flagellants.https://github.com/immunityinc/libptrace/releases/tag/1.0-rc2 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.