Tweets
- Tweets, current page.
- Tweets & replies
- Media
You blocked @0xdea
Are you sure you want to view these Tweets? Viewing Tweets won't unblock @0xdea
-
Pinned TweetThanks. Twitter will use this to make your timeline better. UndoUndo
-
raptor Retweeted
I’ve just published my exploit for the LPE and RCE in OpenBSD’s OpenSMTPD recently disclosed by
@qualys You can find it here: https://github.com/0xdea/exploits/blob/master/openbsd/raptor_opensmtpd.pl …#opensmtpd_too_openpic.twitter.com/q1ykEhz7vh
Thanks. Twitter will use this to make your timeline better. UndoUndo -
raptor Retweeted
I’ve just uploaded my Jailbreak for the iPad Pro (2017) to GitHub. Right now, SSH and Sileo can be installed. Due to lack of devices, I cannot currently implement support for other devices. Feel free to create PRs if you would like to help me!https://github.com/LinusHenze/Fugu
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
raptor Retweeted
Code is a moving target and audits are never complete ... even though the initial audit bootstrap may be annoying for a large or complicated surface .. and you may come up empty that first pass, it pays dividends to your time to keep up with that surface continuouslyhttps://twitter.com/0xdea/status/1223915926158004226 …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
raptor Retweeted
Not having access to your own published paper is peak academia.
Thanks. Twitter will use this to make your timeline better. UndoUndo -
raptor Retweeted
Performance artist generates virtual traffic jams in Google Maps by pulling a wagon full of smartphones http://www.simonweckert.com/googlemapshacks.html …pic.twitter.com/m3bmQXvswI
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Turns out my exploit reliably works also on Debian testing, with only a minor tweak to account for the different netcat flavor.https://twitter.com/0xdea/status/1223908588671918080 …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Buffer overflow in sudo versions 1.7.1 - 1.8.25p1 when pwfeedback is set in sudoers https://www.sudo.ws/alerts/pwfeedback.html … This kinda flew under the radar, but it looks very exploitable to me.
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
And here’s a wonderful post by OpenSMTPD’s main developer
@PoolpOrg: https://poolp.org/posts/2020-01-30/opensmtpd-advisory-dissected/ … Very interesting insight on how a bug enters the code and becomes exploitable over time.https://twitter.com/0xdea/status/1223908588671918080 …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
I’ve just published my exploit for the LPE and RCE in OpenBSD’s OpenSMTPD recently disclosed by
@qualys You can find it here: https://github.com/0xdea/exploits/blob/master/openbsd/raptor_opensmtpd.pl …#opensmtpd_too_openpic.twitter.com/q1ykEhz7vh
Thanks. Twitter will use this to make your timeline better. UndoUndo -
My coworker
@s0wdust’s blog post about an authorization bypass bug exploitable via voice (!) has inflamed a discussion about Google not honoring bug bounty reports…
Regardless of your stance in this, I think the bug is quite interesting 
https://twitter.com/_r_netsec/status/1223247844716367873 …Thanks. Twitter will use this to make your timeline better. UndoUndo -
OK Google: bypass the authentication! By my coworker
@s0wdust https://techblog.mediaservice.net/2020/01/ok-google-bypass-the-authentication/ …Thanks. Twitter will use this to make your timeline better. UndoUndo -
Interesting thread on historical bugdoorshttps://twitter.com/basalberts/status/1222965619500507138 …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
raptor Retweeted
#INFILTRATE20 is proud to announce offensive security expert Marco Ivaldi (@0xdea) will be presenting: The INFILTRATE Effect: 6 Bugs in 6 Months — Don't miss out. REGISTER TODAY! https://www.eventbrite.com/e/infiltrate-2020-tickets-67032186073?aff=Campaign …pic.twitter.com/nUQo3p3oC9
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Robust access control management and segregation. Just joking, never seen this in 20+ years of red teaming
https://twitter.com/jhencinski/status/1221819451617705984 …Thanks. Twitter will use this to make your timeline better. UndoUndo -
raptor Retweeted
Today is the 27th of January It marks the 10th anniversary of one of the darkest days in computing history where the SUN Microsystems acquisition by
@Oracle was completed and the company ceased to exists. Its the day an awesome tech company fell subject to accountants and lawyersThanks. Twitter will use this to make your timeline better. UndoUndo -
raptor Retweeted
the future of users not having control of their own systems is a cure worse than the disease
Thanks. Twitter will use this to make your timeline better. UndoUndo -
“To overcome these limitations, we drew inspiration from the Morris worm (https://spaf.cerias.purdue.edu/tech-reps/823.pdf …), which exploited the DEBUG vulnerability in Sendmail by executing the body of a mail as a shell script“ Lovely
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
LPE and RCE in OpenSMTPD (CVE-2020-7247), OpenBSD’s Mail Server. Another outstanding advisory by
@qualys “Only two remote holes in the default install, in a heck of a long time!” https://www.openwall.com/lists/oss-security/2020/01/28/3 …Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
raptor Retweeted
We are pleased to announce INFILTRATE 2020 speaker Nitay Artenstein (
@nitayart) presenting: The Promised Band: Winning Android Fragmentation with a MediaTek Baseband RCE https://infiltratecon.com/conference/speakers/nitay-artenstein.html ….#INFILTRATE20pic.twitter.com/uzbm14Ee5j
Thanks. Twitter will use this to make your timeline better. UndoUndo
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
