Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @Mingjian_Zhou
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Mingjian_Zhou
-
Mingjian Zhou proslijedio/la je Tweet
Android: ashmem readonly bypasses via remap_file_pages() and ASHMEM_UNPIN https://bugs.chromium.org/p/project-zero/issues/detail?id=1949 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Slides + recording of my
#36c3 talk: https://saelo.github.io/presentations/36c3_messenger_hacking.pdf … https://media.ccc.de/v/36c3-10497-messenger_hacking_remotely_compromising_an_iphone_through_imessage … had to omit many details, but blogpost coming soon!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
New guidance on Linux-stable Merges for Android: https://source.android.com/devices/architecture/kernel/linux-stable-merges … -- looks positive, reducing the patch gap for upstream kernel security bugs is really important. The window of exposure for publicly known issues is too long at the moment.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
The art of N day exploit. 1-Click Android 10 Remote rooting demo.https://youtu.be/2pNsCi0T9MI
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
The writeup and release is here! Tailoring CVE-2015-2215 to Achieve Root -https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Android: pointer leak via insufficient binder message verification https://bugs.chromium.org/p/project-zero/issues/detail?id=860 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Announcement: We've updated our prices for major Mobile exploits. For the first time, we will be paying more for Android than iOS. We've also increased WhatsApp & iMessage (0-click) but reduced the payout for iOS (1-click) in accordance with market trends: https://zerodium.com/program.html#changelog …pic.twitter.com/XqpmAKmmKF
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
New blog post on an iMessage bug that allows files to be read off an iPhone remotely! https://googleprojectzero.blogspot.com/2019/08/the-many-possibilities-of-cve-2019-8646.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
We've finally managed to update our Secure Boot Technical Overview to cover the enhancements from the last couple of years (h/t
@NAKsecurity for the excellent initial document). Find this and a whitepaper on secure storage in TrustZone at http://qualcomm.com/company/product-security/resources ….Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
If you're at Linux Security Summit NA this morning, I'll be talking about all the work going into hardening the Linux kernel! https://lssna19.sched.com/event/RHbF And if you can't make it, video should be available in a few days. In the meantime, the slides are here: https://outflux.net/slides/2019/lss/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
slides for Facetime vulnerabilities available at http://i.blackhat.com/USA-19/Thursday/us-19-Huang-Towards-Discovering-Remote-Code-Execution-Vulnerabilities-In-Apple-FaceTime.pdf … and slides for iPhone XS kernel vulnerabilities available at http://i.blackhat.com/USA-19/Thursday/us-19-Wang-Attacking-IPhone-XS-Max.pdf … pls enjoy!
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
It's finally here! I have published my Intro to Android App Reverse Engineering workshop! If you're interested in learning how to begin RE'ing Android apps (both DEX and native code), check out this workshop.
#reverseengineering#android#infosec http://maddiestone.github.io/AndroidAppRE pic.twitter.com/swFZc3tMCO
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Here are the slides from my
@BlackHatEvents talk on reversing Android pre-installed apps & case studies of pre-installed security issues!#BHUSA https://github.com/maddiestone/ConPresentations/blob/master/Blackhat2019.SecuringTheSystem.pdf …pic.twitter.com/nK13eH88au
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Apple’s new bounty program(includes macOS) and 0-click JB = $1,000,000~


pic.twitter.com/RLu7bPY5z7
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Couldn't agree more with
@benhawkes on this slide, shout-out to IR teams in this industry!#QPSIpic.twitter.com/WzMPC4zNHv
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Project Zero blog: "The Fully Remote Attack Surface of the iPhone" by Natalie Silvanovich (
@natashenka) - https://googleprojectzero.blogspot.com/2019/08/the-fully-remote-attack-surface-of.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Project Zero Vulnerability Disclosure FAQ - https://googleprojectzero.blogspot.com/p/vulnerability-disclosure-faq.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mingjian Zhou proslijedio/la je Tweet
Linux v5.2 is out! I'm excited about page allocator freelist randomization, Clang stack variable autoinitialization, PPC kernel userspace access prevention, MDS mitigations, userfaultfd sysctl knob, separate mm for text poking, and implicit fallthrough. https://outflux.net/blog/archives/2019/07/17/security-things-in-linux-v5-2/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
#qpss19 is really amazing. Thanks QPSI !https://twitter.com/RatedG4E/status/1129433406398353408 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Binder is an attractive target.https://twitter.com/mobilesecurity_/status/1127531777495588864 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.