Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @_tsuro
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @_tsuro
-
Prikvačeni tweet
My latest Chrome bug just got derestricted. Did you know that floats have a minus zero? Turns out if you forget about it, that can mean RCE :). https://bugs.chromium.org/p/chromium/issues/detail?id=880207 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
stephen proslijedio/la je Tweet
Pointer Compression in V8 (and what it means for browser exploits) https://blog.infosectcbr.com.au/2020/02/pointer-compression-in-v8.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
We sent this
#zombieload PoC to Intel on May 16, just hours after we got access to the patches. The#zombieload paper from last year already describes the issue. Media already reported about it in November: https://www.zdnet.com/article/intels-cascade-lake-cpus-impacted-by-new-zombieload-v2-attack/ … Where's the news?#MDS#L1DEShttps://twitter.com/mlqxyz/status/1221855508765794305 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
Finally, the wait is over! We present CacheOut, a new speculative execution attack to leak data on Intel CPUs: https://cacheoutattack.com
#intel#cacheout@themadstephan, Andrew Kwong, Daniel Genkin and@yuvalyarompic.twitter.com/tQYerMiOHK
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
Week has passed... If you said 20+ you were right. 30 on dashboard (open+pending) https://syzkaller.appspot.com/upstream#open My local instance has 70(!): https://gist.githubusercontent.com/dvyukov/80548bcc0f577670e2d1b1c4a1e7fe49/raw/290c9063c915a01f9bd25d85b313619590529919/gistfile1.txt … All reachable by unpriv users That's not all. To find more we need to fix these first, otherwise it just keep crashinghttps://twitter.com/dvyukov/status/1217502660007546881 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
Assert yourself on the browser playground with
@mmolgtm ’s guide to hunting Chrome IPC sandbox escapes:https://securitylab.github.com/research/chromium-ipc-vulnerabilities …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
Brace yourselves, more netfilter bugs are coming! https://github.com/google/syzkaller/blob/master/sys/linux/socket_netlink_netfilter_nftables.txt … Bets on number of bugs in the first week
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
I'm reliably informed that the washington post don't know what they're talking about, it's not an authenticode issue, and is in fact a big deal. https://twitter.com/taviso/status/1217114527688318976 …
Tweet je nedostupan.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
here’s something that’s been stressing me out a lot for a while, that I should probably keep to myself, but can’t stand doing so. One of the exploit techniques in the first of the chains found ITW by p0 looks a lot like it was heavily inspired from some of my private stuff.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
I'm very excited to share my blogpost series (including PoC code) about a remote, interactionless iPhone exploit over iMessage: https://googleprojectzero.blogspot.com/2020/01/remote-iphone-exploitation-part-1.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
Full analysis and exploit for Windows kernel ws2ifsl use-after-free (CVE-2019-1215) by our researcher
@flxflndy https://labs.bluefrostsecurity.de/blog/2020/01/07/cve-2019-1215-analysis-of-a-use-after-free-in-ws2ifsl/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I gave a lightning talk at the
#36c3 on PathAuditor: https://media.ccc.de/v/36c3-10524-lightning_talks_day_2#t=1162 … The main point I tried to make is that this bug class is fun to research and easy to find. If you've watched it, I'd love some feedback:https://c3lt.de/36c3/talk/93MFWV/feedback/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
For all women interested in playing the
#36c3ctf - There will be a short introduction at the blckpwny tables at 21:30 today with the opportunity to join the blckpwny team.#36c3#WomenInInfoSecHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
You want to play some
#CTF before 2019 ends?#36c3 got you covered!#36c3ctf -> https://2019.ctf.link (powered by@hxpctf)#junior36c3ctf -> https://kuchenblech.xyzHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
On my way to
#36c3 \o/. Hit me up if you want to chat about CTFs, Chrome exploitation or any other security topics!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
Ever wondered what makes a CTF challenge good? I've asked myself that many times. I wrote this to help me answer that question based on discussions with others in the communityhttps://bit.ly/ctf-design
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
Simplest and strangest sandbox escape I've found in Chrome was just derestricted https://crbug.com/1000002
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
Can also be used as a straight sbx escape given a Spidermonkey bug: just set a malicious WPAD script via preferences, it will be executed in the UI process.https://twitter.com/thezdi/status/1206609865206063105 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
I repropose my notes about x86, Linux and virtualization in a single text file (~2500 lines only) for my fellow students in Sapienza. https://gist.githubusercontent.com/andreafioraldi/c6ab4765a3821bc6f07537ad4cdafa9e/raw/4351fe1e6235daf85647ad34d2b50df20a21da63/asov_checkshit_singlefile.txt …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
stephen proslijedio/la je Tweet
I see a lot of complaints in my Twitter stream about academic conferences rejecting papers. I think many somewhat miss the point - a lot of unfair rejections are a direct result of the current incentive structures that generate too many papers and focus them on too few confs.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.