Ali Abbasi

@bl4ckic3

Researcher on Systems Security for Embedded Systems

Germany
syssec.ruhr-uni-bochum.de/chair/staff/al…
Vrijeme pridruživanja: kolovoz 2009.
23 fotografije ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @bl4ckic3

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @bl4ckic3

  1. Prikvačeni tweet
    4. velj

    Our Siemens S7 PLCs Bootloader Arbitrary Code Exec Util repo is updated. The repo now contains usage examples & memory dump functionality. Currently, we only support bootloader v4.2.1 while Siemens latest version is 4.2.3

    13 proslijeđenih tweetova 15 korisnika označava da im se sviđa
    Poništi
  2. proslijedio/la je Tweet
    3. velj

    ROPs (like any indirect branch) are mitigated using PAC (sign LR with SP as a salt). But PAC isn't enough for stack protection (even setting aside the Qualcomm attack). It doesn't protect on other data on the stack, such as restore regs. So, old stack cookies...:)

    16 proslijeđenih tweetova 129 korisnika označava da im se sviđa
    Poništi
  3. proslijedio/la je Tweet
    2. velj

    Finally released part 2 of my »Reversing with « series! In this video we reverse engineer some of the integrated decryption methods and see how we can easily analyze C++ code in Ghidra.

    6 replies 156 proslijeđenih tweetova 516 korisnika označava da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    28. sij

    [Educational] One of the best blog posts that I ever read about going from 0 to unauth RCE in f**king Mikrotik OS step by step:

    396 proslijeđenih tweetova 937 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  5. 28. sij

    Somehow, an S4 () socks found it’s way to my desk here in Bochum

    16 korisnika označava da im se sviđa
    Poništi
  6. proslijedio/la je Tweet
    27. sij

    And another award these days 👏 wins the "Outstanding Researcher Award" 2019 for his research on "Collaborative and Resilient Autonomous Systems".

    8 proslijeđenih tweetova 25 korisnika označava da im se sviđa
    Poništi
  7. proslijedio/la je Tweet
    25. sij

    Will be interesting to see how long it takes before electric sector takes notice of the major TMW DNP3 stack vuln from . Ideally TMW should jump on this and at least announce patch plan soon.

    12 proslijeđenih tweetova 21 korisnik označava da mu se sviđa
    Poništi
  8. proslijedio/la je Tweet
    24. sij

    Das war der erste Pwn2Own Miami. Herzlichen Glückwunsch an die deutschen Teilnehmer , und zu einem großartigen zweiten Platz! ^TG

    For complete details on the results Miami and links to all the videos, check out our blog at
    2 proslijeđena tweeta 4 korisnika označavaju da im se sviđa
    Poništi
  9. proslijedio/la je Tweet
    24. sij

    🥳 Tobias Scharnowski , Niklas Breitfeld and Ali Abbasi () won 2nd place and substantial prize money at for hacking Industrial Control System () Equipment. We're happy with you!

    9 proslijeđenih tweetova 21 korisnik označava da mu se sviđa
    Poništi
  10. proslijedio/la je Tweet
    24. sij

    Wow!😮 Die drei -Forscher , haben den zweiten Platz und viel Geld beim Hacking-Wettbewerb gewonnen. Gratulation! ^tst

    5 proslijeđenih tweetova 24 korisnika označavaju da im se sviđa
    Poništi
  11. proslijedio/la je Tweet
    23. sij

    I can confirm that ’s bugs and exploits are top notch.

    Confirmed! , , and used a couple of bugs to get code execution on the Triangle Microworks SCADA Data Gateway. They earn $25,000 and 25 Master of Pwn points. That puts them in 2nd place with 87.5 total.
    1 reply 1 proslijeđeni tweet 21 korisnik označava da mu se sviđa
    Poništi
  12. proslijedio/la je Tweet
    23. sij

    The Security Circus 2019 update is now online:

    52 proslijeđena tweeta 97 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    23. sij

    Success! The team of , , and needed little time to demo their RCE against the Triangle Microworks SCADA Data Gateway in the DNP3 category. They're off to the disclosure room with all the details.

    10 proslijeđenih tweetova 24 korisnika označavaju da im se sviđa
    Poništi
  14. proslijedio/la je Tweet
    23. sij

    Congrats to the Flashback team ( & ) and the Horst Goertz for IT-Security team () for winning big so far at 🎉 So far, $180,000 has been awarded for pwning ICS products at the hacking competition.

    14 proslijeđenih tweetova 31 korisnik označava da mu se sviđa
    Poništi
  15. 22. sij

    And pushed. Be advised we might still fix some part of the code.

    6 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  16. proslijedio/la je Tweet
    22. sij

    Success! , , and needed only a few seconds to demonstrate their RCE against the Inductive Automation Ignition. They head off to the divulge all the details.

    2 proslijeđena tweeta 19 korisnika označava da im se sviđa
    Poništi
  17. proslijedio/la je Tweet
    22. sij

    At high noon, , , and target the Inductive Automation Ignition with an RCE in the Control Server category.

    2 proslijeđena tweeta 8 korisnika označava da im se sviđa
    Poništi
  18. 22. sij

    For those who attended our talk with at , I will push the client utility for Siemens S7 bootloader arbitrary code execution here:

    36 proslijeđenih tweetova 65 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  19. proslijedio/la je Tweet
    22. sij

    presenting on the Special Access Feature of the Siemens S7 PLC. Unfortunately the co-author can't be here at . Stage 2 room is packed...

    1 proslijeđeni tweet 1 korisnik označava da mu se sviđa
    Poništi

@bl4ckic3 još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·