Min(Spark) Zheng

@SparkZheng

Android/iOS Senior Security Engineer @ Alibaba, CUHK PhD, a member of Blue-lotus and Insight-labs, worked in FireEye , Baidu and Tencent.

Vrijeme pridruživanja: prosinac 2013.
49 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @SparkZheng

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @SparkZheng

  1. Prikvačeni tweet
    9. kol 2019.

    The slides of our BlackHat USA 2019 talk: Thank you~

    1 reply 41 proslijeđeni tweet 106 korisnika označava da im se sviđa
    Poništi
  2. prije 7 sati

    finally, it comes! XNU ( kernel of iOS 13 and macOS 10.15) source code: new mitigation and new bypass. :-)

    22 proslijeđena tweeta 99 korisnika označava da im se sviđa
    Poništi
  3. 10. sij

    Cool~

    I'm very excited to share my blogpost series (including PoC code) about a remote, interactionless iPhone exploit over iMessage:
    Prikaži ovu nit
    1 reply 3 proslijeđena tweeta 15 korisnika označava da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    9. sij

    I'm very excited to share my blogpost series (including PoC code) about a remote, interactionless iPhone exploit over iMessage:

    15 replies 542 proslijeđena tweeta 1.270 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    5. pro 2019.

    Trust in Apple's Secret Garden: Exploring & Reversing Apple's Continuity Protocol [SLIDES] by Ta-Lun Yen

    26 proslijeđenih tweetova 63 korisnika označavaju da im se sviđa
    Poništi
  6. proslijedio/la je Tweet
    9. stu 2019.

    iOS 13 mitigated a technique that could be used (and was used) to disable sandbox operations system-wide (without any dynamic patches/daemon). As such I am open-sourcing my implementation of this patch (which was also used in unc0ver)

    19 replies 128 proslijeđenih tweetova 645 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  7. 10. stu 2019.

    W!O!W!

    available now!
    1 reply 5 proslijeđenih tweetova 104 korisnika označavaju da im se sviđa
    Poništi
  8. 29. lis 2019.

    Building a third-party iOS kernel extension is great~👍

    I built an iOS kernel debugger called KTRW based on a KTRR bypass for the iPhone X. It is capable of patching kernel __TEXT_EXEC, loading kernel extensions, and performing single-step kernel debugging with LLDB and IDA Pro over USB:
    Prikaži ovu nit
    6 proslijeđenih tweetova 65 korisnika označava da im se sviđa
    Poništi
  9. 29. ruj 2019.

    Amazing~! No need to use a private JB to get a 0-day research environment now~! We can have a JB environment on the latest iOS version with checkm8. It will help researchers to test and find kernel bugs for untethered jailbreak.

    0:32
    HACKED! Verbose booting iPhone X looks pretty cool. Starting in DFU Mode, it took 2 seconds to jailbreak it with checkm8, and then I made it automatically boot from NAND with patches for verbose boot. Latest iOS 13.1.1, and no need to upload any images. Thanks
    Prikaži ovu nit
    7 replies 94 proslijeđena tweeta 487 korisnika označava da im se sviđa
    Poništi
  10. proslijedio/la je Tweet
    27. ruj 2019.

    Non techie version: Any iPhone 8/X or earlier can now be: - booted to any iOS version, past/present/future, with no SHSH/APTickets - booted to any OS (e.g. Android) - compromised by attacker w/physical access, but still requires password (or brute force)for private data

    879 proslijeđenih tweetova 2.821 korisnik označava da mu se sviđa
    Poništi
  11. 27. ruj 2019.

    WOW!!!

    EPIC JAILBREAK: Introducing checkm8 (read "checkmate"), a permanent unpatchable bootrom exploit for hundreds of millions of iOS devices. Most generations of iPhones and iPads are vulnerable: from iPhone 4S (A5 chip) to iPhone 8 and iPhone X (A11 chip).
    Prikaži ovu nit
    8 replies 21 proslijeđeni tweet 259 korisnika označava da im se sviđa
    Poništi
  12. 29. kol 2019.

    Nice job... and this report exposed a non-public and useful vulnerability I discovered earlier ... 😭😭😭

    thanks to , for their joint work on this. This has been a huge effort to pull apart and document almost every byte of a multi-year in-the-wild exploitation campaign, which used 14 different iOS exploits.
    Prikaži ovu nit
    8 proslijeđenih tweetova 81 korisnik označava da mu se sviđa
    Poništi
  13. 18. kol 2019.

    😂

    unc0ver v3.5.0 is NOW OUT with iOS 12.4 support for A7-A11 devices (Latest and signed firmware)! GitHub releases: Reddit post:
    8 replies 14 proslijeđenih tweetova 160 korisnika označava da im se sviđa
    Poništi
  14. proslijedio/la je Tweet
    8. kol 2019.

    slides for Facetime vulnerabilities available at and slides for iPhone XS kernel vulnerabilities available at pls enjoy!

    5 replies 105 proslijeđenih tweetova 259 korisnika označava da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    9. kol 2019.

    In case you missed 's talk at this week, here is a video showing a remote exploit for one of the iMessage bugs we found: Be sure to read if you are interested in these kinds of attacks!

    10 replies 169 proslijeđenih tweetova 416 korisnika označava da im se sviđa
    Poništi
  16. 8. kol 2019.

    welcome to see our booth @ blackhat~🎊🎊🎊

    0:14
    Looking forward to seeing you at ASRC booth No.2606 in Blackhat USA🥳
    2 proslijeđena tweeta 11 korisnika označava da im se sviđa
    Poništi
  17. 8. kol 2019.

    Apple’s new bounty program(includes macOS) and 0-click JB = $1,000,000~🎊🎊🎊

    10 replies 74 proslijeđena tweeta 341 korisnik označava da mu se sviđa
    Poništi
  18. 8. kol 2019.

    Just finished my talk at BlackHat USA 2019~😀

    1 reply 9 proslijeđenih tweetova 130 korisnika označava da im se sviđa
    Poništi
  19. 1. kol 2019.

    A very powerful bug. Remotely stole files through iMessage DEMO (CVE-2019-8646 find by ):

    12 replies 142 proslijeđena tweeta 404 korisnika označavaju da im se sviđa
    Poništi
  20. proslijedio/la je Tweet
    25. srp 2019.

    Hello world! A few thoughts on how Apple BLE works (spoiler: it is possible to get your phone number while you're using your Apple Device)

    5 replies 151 proslijeđeni tweet 243 korisnika označavaju da im se sviđa
    Poništi

@SparkZheng još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·