Source code is vital for many important things. Verifying the security of apps is not high up that list.
-
-
Replying to @mjg59
Source access makes it easier to find trivial crypto fuckups, but finding deliberate backdoors can be easier at the binary level
6 replies 22 retweets 35 likes -
PoC||GTFO 8:3 - Deniable backdoor using compiler bugs, by
@johnregehr et al. https://archive.org/stream/pocorgtfo08#page/n5/mode/2up …2 replies 12 retweets 45 likes -
Replying to @angealbertini @mjg59 and
That's awesome. I once thought I found one in an entropy mixer, but it was handled right.
1 reply 0 retweets 1 like -
Replying to @matthew_d_green @angealbertini and
if I've learned anything from Regehr it's that "int x=1+1;" is prolly undefined behaviour
2 replies 1 retweet 14 likes
Replying to @thegrugq @matthew_d_green and
Nah, well defined. int x = 100000 + 100000 isn't, though.
5:52 AM - 12 Mar 2017
0 replies
0 retweets
1 like
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.