Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @CTurtE
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @CTurtE
-
Manual reference counting in C like seems particularly error-prone and reminds me of a couple of the last use-after-frees in the FreeBSD kernel - I'm sure there are more variants of that to be found for all you PS4 hackers :P https://www.freebsd.org/security/advisories/FreeBSD-SA-19:17.fd.asc … https://www.freebsd.org/security/advisories/FreeBSD-SA-19:02.fd.asc …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ISC-DHCP 4.4.2 released today which fixes ~30 reference count leaks I found whilst looking for variants of CVE-2018-5733. Good bug type for static analysis - I used
@Semmle to look for inter-function paths that could return instead of releasing references https://downloads.isc.org/isc/dhcp/4.4.2/dhcp-4.4.2-RELNOTES …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
CTurt proslijedio/la je Tweet
Time to git yer git security updates, nice finds by
@CTurtE and@n_joly :)https://docs.microsoft.com/en-us/visualstudio/releases/2019/release-notes#security-advisory-notice …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hacking the PS2 with Yabasic: https://cturt.github.io/ps2-yabasic.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pro tip: you can make a 1: drive that points to your OneDrive (subst 1: %userprofile%\OneDrive), if you want to become vulnerable to this.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Funny bug that could technically result in RCE from git clone if you have non-letter drives created on Windows: https://marc.info/?l=git&m=156528271204267&w=2 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Today I added support for the Game Boy processor in Ghidra (based on the existing support for Z80 processor). Seems to work pretty well so far! https://github.com/CTurt/GameBoy_GhidraSleigh …pic.twitter.com/dRg1xBmF1L
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
This type of “2-way buffer overflow” where you control the size _and_ direction gives a very nice exploitation primitive where you can leak and corrupt memory, bypassing almost all mitigations (ASLR & stack cookie) with 1 bug. Reminds me of SETFKEY FreeBSD kernel exploit.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Just reported a pretty nasty vulnerability in CEN64 (Nintendo 64 emulator) that could probably be exploited for emulator -> native code execution (https://github.com/n64dev/cen64/issues/122 …).
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
CTurt proslijedio/la je Tweet
Want to see an example of how the MSRC vulnerability response engineering team has used Semmle to scale up code review? Read our new SRD blog.
@CTurtE@_strohuhttps://blogs.technet.microsoft.com/srd/2019/03/19/vulnerability-hunting-with-semmle-ql-part-2/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Heading to Redmond for a week, before pwn2own. Give me a ping if you want to talk :)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Reverse Engineering and Modding Mario Pinball Land (GBA): http://cturt.github.io/pinball.html
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Happy new year, everyone! 2018 was splendid; so thankful to be surrounded by such great people :)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
CTurt proslijedio/la je Tweet
@CTurtE & my talk on the Microsoft inside story on Spectre and Meltodwn mitigation efforts is now online. Shout out to@epakskape &@cybericua for helping with the slides and everyone @ Microsoft who was part of that effort.https://www.youtube.com/watch?v=_J9MpK4MQWk …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Excited for
@hardwear_io tomorrow! Let me know if anyone wants to meet up :)Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
CTurt proslijedio/la je Tweet
Slides posted for the
#BHUSA presentation by@anders_fogh &@CTurtE on systematizing and mitigating speculative execution side channels vulnerabilities:https://github.com/Microsoft/MSRC-Security-Research/blob/master/presentations/2018_08_BlackHatUSA/us-18-Fogh-Ertl-Wrangling-with-the-Ghost-An-Inside-Story-of-Mitigating-Speculative-Execution-Side-Channel-Vulnerabilities.pdf …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
CTurt proslijedio/la je Tweet
@anders_fogh and Chris on the stage now. Reflection on some fantastic work during the last year#BHUSA#BHUSA18pic.twitter.com/ApSMgXdSWt
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
CTurt proslijedio/la je Tweet
Super bummed that an unmovable scheduling conflict has popped up that is going to prevent me from speaking at
#BHUSA this year, but I'm excited that@CTurtE will be filling in for me alongside@anders_fogh! It'll be a great talk. https://www.blackhat.com/us-18/briefings/schedule/index.html#wrangling-with-the-ghost-an-inside-story-of-mitigating-speculative-execution-side-channel-vulnerabilities-10996 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
CTurt proslijedio/la je Tweet
slides from my
@0x41con talk describing ps4 5.0x kernel exploit http://crack.bargains/02r0.pdfHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.