Tweets
- Tweets, current page.
- Tweets & replies
- Media
You blocked @abu_y0ussef
Are you sure you want to view these Tweets? Viewing Tweets won't unblock @abu_y0ussef
-
Pinned Tweet
woooot. finally pwned pamunix.so with row-hammer + memory deduplication. Can now authenticate on a co-hosted VM with a wrong/blank password
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Après BiereSecu Paris, BiereSecu Toulouse, Le BiereSecu arrive à Lyon le 13 Février !! Ca se passera au Peaky Blindershttps://goo.gl/maps/L6iEXmFgc1QrfvVb9 …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Finally, the wait is over! We present CacheOut, a new speculative execution attack to leak data on Intel CPUs: https://cacheoutattack.com
#intel#cacheout@themadstephan, Andrew Kwong, Daniel Genkin and@yuvalyarompic.twitter.com/tQYerMiOHK
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Interested in learning Windows Kernel exploitation ?
@Synacktiv wrote 3 challenges to help you write your first Windows Kernel shellcodes ! You can already try the first one, or all of them if you're a premium member. https://www.root-me.org/en/breve/New-set-of-challenges-in-Microsoft-Windows-kernel …pic.twitter.com/q8oSwfd5cC
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Wow, crazy issue bypasses PAN: Part of the uaccess routines (__arch_clear_user() and __arch_copy_{in,from,to}_user()) fail to re-enable PAN if they encounter an unhandled fault while accessing userspace. Check out the patch: https://lore.kernel.org/patchwork/patch/1157641/ …
@Liran_AlonShow this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
kernel exploit by
@a13xp0p0v with a nice smep bypasshttps://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html …Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
I'll make my tech report and poc public soon. It was a fun bug affecting most major distributions. one exploit to rule them all w/ all kernel expl mitigation bypasses - no rop chains / hardcoded crap https://duasynt.com/blog/ubuntu-centos-redhat-privesc …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Fifty shades darker: no safe wor(l)d in SMM by
@BrunoPujos https://www.synacktiv.com/posts/exploit/through-the-smm-class-and-a-vulnerability-found-there.html …Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
https://github.com/xerub/acorn untethered+unsandboxed code execution based on https://media.ccc.de/v/36c3-11034-tales_of_old_untethering_ios_11 … /cc
@littlelailo@s1guza@ZecOps@_bazadThanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Also while I am on twitter :P https://github.com/Fire30/bad_hoist … PS4 Webkit exploit for 6.XX consoles. Gains addrof/fakeobj and arbitrary read and write primitives. Fixed in 7.00. Uses bug from: https://bugs.chromium.org/p/project-zero/issues/detail?id=1665 …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Decided to release the ROP chain source code of h-encore²:https://github.com/TheOfficialFloW/h-encore-2/blob/master/stage2/stage2.S …
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Ghidra's decompiler is written in C++, hence it was trivial to implement a full integration. The new version of Cutter is shipped with a new plugin we wrote for Cutter and
@radareorg. NO JAVA INVOLVED. You can find the plugin and more info here --> https://github.com/radareorg/r2ghidra-dec … >>pic.twitter.com/KCxR5SRxkn
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
"Hey la Kibana, Inspection des gadgets !"
Pwning Kibana 6.2 using prototype pollution and CVE-2018-17246 by @_mabote_ https://www.synacktiv.com/posts/pentest/pwning-an-outdated-kibana-with-not-so-sad-vulnerabilities.html …Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
I wrote a thing about JSC exploitation (including how to leak StructureID) and Safari sandbox escape.https://gts3.org/2019/Real-World-CTF-2019-Safari.html …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Mehdi Talbi Retweeted
Qualys Security Advisory - Local Privilege Escalation in OpenBSD's dynamic loader (CVE-2019-19726) https://www.openwall.com/lists/oss-security/2019/12/11/9 … < Beautiful! Wonder how
@Qualys found it?Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Here is an exploit chain I wrote for Firefox that gets RCE via CVE-2019-9810 and escape the sandbox with CVE-2019-11708/CVE-2019-9810. Once compromised, it drops a payload and injects privileged JS code in already/newly created tabs. https://github.com/0vercl0k/CVE-2019-11708 …pic.twitter.com/LeAOCgqpMG
Thanks. Twitter will use this to make your timeline better. UndoUndo -
this is excellent. posting it again herehttps://www.youtube.com/watch?v=BKorP55Aqvg …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
Mac secure boot (with two world firsts: DMA defense from PCIe Bus 0, and the Option ROM sandbox), iOS kernel integrity, Pointer Auth Codes (PAC), APRR register, Page Protection Layer (PPL), and novel Find My crypto — all in my slides from Black Hat 2019! https://i.blackhat.com/USA-19/Thursday/us-19-Krstic-Behind-The-Scenes-Of-IOS-And-Mas-Security.pdf …
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
A 6 years old girl I know well has been diagnosed an incurable cancel few months ago, she needs quite a lot of money for an experimental treatment :https://www.paypal.com/pools/c/8jOu7u13VC …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mehdi Talbi Retweeted
A look inside Raspberry Pi hardware decoders licenses by
@0xf4b ! That’s on page 43 of@pagedout_zine ! https://pagedout.institute/download/PagedOut_002_beta2.pdf#page=43 …Thanks. Twitter will use this to make your timeline better. UndoUndo
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.