Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @Pat_Ventuzelo
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Pat_Ventuzelo
-
Prikvačeni tweet
First #wasm security blogpost of 2020
Some people ask me, so here is how to start fuzzing #WebAssembly APIs of#browser JavaScript engines like Chrome/V8. In this blogpost, I'm using:
Dharma/Domato
Chrome/v8 ASan pre-built
Honggfuzz ;)https://webassembly-security.com/fuzzing-wasm-javascript-dharma-chrome-v8/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
New #fuzzing blogpost :) Quick blogpost about how I found a OOM/DoS bug in a famous@npmjs/@nodejs package using coverage-guided#javascript fuzzer.
Fuzzer: Jsfuzz by @fuzzitdev
Target: wasm-parser
Bug: DoS/OOM
https://webassembly-security.com/fuzzing-npm-nodejs-webassembly-parsing-library-with-jsfuzz/ …
#WeAssembly#js#wasm#NodeJSHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
#Blackhat has 151 trainings. We have 18. 18 of the best hacker trainings you can ever find.#SimplifyYourChoices Early
prices are still available at #Ringzer0! Register now
https://ringzer0.training
RTs appreciated!
#QUALITYvsQUANTITYpic.twitter.com/uDo3MDzh36
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
New #fuzzing blogpost :) Quick blogpost about how I found a OOM/DoS bug in a famous@npmjs/@nodejs package using coverage-guided#javascript fuzzer.
Fuzzer: Jsfuzz by @fuzzitdev
Target: wasm-parser
Bug: DoS/OOM
https://webassembly-security.com/fuzzing-npm-nodejs-webassembly-parsing-library-with-jsfuzz/ …
#WeAssembly#js#wasm#NodeJSHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Fuzzing JavaScript WebAssembly APIs using Dharma/Domato (on Chrome/V8)https://webassembly-security.com/fuzzing-wasm-javascript-dharma-chrome-v8/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Fuzzing JavaScript WebAssembly APIs using Dharma/Domato https://webassembly-security.com/fuzzing-wasm-javascript-dharma-chrome-v8/ … - an interesting post that looks at testing the wasm JS APIs for bugs and vulnerabilities
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Fuzzing JavaScript WebAssembly APIs with Dharma/Domato (Chrome/v8)https://webassembly-security.com/fuzzing-wasm-javascript-dharma-chrome-v8/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Analysis of Google Keep WebAssembly module | WebAssembly Security (“There aren’t that many people using WebAssembly in production yet, although one notable usage is within GoogleKeep, a cross-platform note-taking app”)https://buff.ly/2ZagaJM
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Only 4 days left to enjoy the early bird discount
Reversing & Fuzzing #WebAssembly
3-Days
Amsterdam at @HITBSecConf
20 -22 April 2020https://conference.hitb.org/hitbsecconf2020ams/sessions/3-day-training-4-webassembly-security-from-reversing-to-vulnerability-research/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Only 4 days left to enjoy the early bird discount
Reversing & Fuzzing #WebAssembly
3-Days
Amsterdam at @HITBSecConf
20 -22 April 2020https://conference.hitb.org/hitbsecconf2020ams/sessions/3-day-training-4-webassembly-security-from-reversing-to-vulnerability-research/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I will give a workshop about how to reverse eWasm smart contract ;)
#WebAssembly@EthCC_#EthCChttps://twitter.com/EthCC_/status/1221860517612081152 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Looks like we're in the final throws of getting
@bytecodeallies wasmtime accepted into oss-fuzz, which would be the first@rustlang fuzz targets running there ever AFAIK. Thanks to@fitzgen @jonathanmetzman (and team)@fastly for helping make this happen. Pretty cool.Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Holy smokes!
@Microsoft comes flying into the ring with Puppeteer-on-12-cups-of-coffee — Playwright does native browser automation on Chromium, WebKit, and Firefox.
https://github.com/microsoft/playwright/blob/master/README.md …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Is ChakraCore still used by
@Microsoft? Because it's pretty funny to see the number of github issues with *potential 0-days* crashtests insides.https://github.com/microsoft/ChakraCore/issues …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Which subject about
#WebAssembly security do you want for my next blogpost? Old blogposts here: https://webassembly-security.com/blog Training: https://webassembly-security.com/Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
We (
@serg_delft) just opened our software testing lecture notes. It currently contains 14 full chapters, 52k words, 63 videos, and 82 exercises. License: CC-BY-NC-SA. Feel free to use it! https://sttp.siteHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
My first blog post on browser exploitation for
@infosectcbr. I'll look at how to pop xcalc on current Linux Spidermonkey given a relative (oob) rw bug. Spidermonkey is the JavaScript Engine in Firefox. Exploit code also supplied. https://blog.infosectcbr.com.au/2020/01/firefox-spidermonkey-js-engine.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Announcing better support for fuzzing with structured inputs in Rust!
New releases of `cargo fuzz`, `libfuzzer-sys`, and `arbitrary` better support writing fuzz targets that take well-formed instances of custom input types.
Details: https://fitzgeraldnick.com/2020/01/16/better-support-for-fuzzing-structured-inputs-in-rust.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Want to play with LoRa using SDR? Or have few guidelines for you security assessment? Checkout my new post here: https://penthertz.com/blog/testing-LoRa-with-SDR-and-handy-tools.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ proslijedio/la je Tweet
Fuzzing JavaScript WebAssembly APIs with Dharma/Domato (Chrome/v8) http://dlvr.it/RN2v9g
#chrome#d8pic.twitter.com/JfmjWD7B04
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Thanks everyone for the awesome feedbacks of my last blogpost about Fuzzing
#WebAssembly APIs of Chrome/V8 with Dharma/Domato !! My next training about#wasm is next month ;)
WebAssembly Reversing and Security Analysis
Feb 10 - 13
Berlin
https://advancedsecurity.training/events/berlin-wasm-spring-2020/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
Our call for speakers is now closed ! Thanks for all the applications
We will now start working on the schedule and fit all 250 speakers

Too late to be a speaker but not to participate :