Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @Digital_Cold
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Digital_Cold
-
Prikvačeni tweet
A writeup for HITCON's Super Hexagon challenge (part1). A detailed look into AArch64 custom kernel exploitation.https://hernan.de/blog/2018/10/30/super-hexagon-a-journey-from-el0-to-s-el3/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Another stat to add: I estimate AT LEAST 4.4 million lines of code (see repo for the calculation). Absolutely insane!
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Check out how my CTF team, Kernel Sanders and I approached CSAW's embedded security competition using angr and how we leveraged a buffer overflow to print arbitrary messages to the serial port using RFID shellcodehttps://github.com/ufsit/csawesc19
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Looks like a bug, and almost a vulnerability, but not quite. Maybe some better pwners can take this to an exploit?
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
This is the allowed check that is passed to the lack of error handling on fopen: https://github.com/svagner/vixie-cron/blob/13d13f0b38d73e7a415caa77b5821be92dd16f70/misc.c#L462 … And this is as far as the program gets with the new ulimit: https://github.com/svagner/vixie-cron/blob/13d13f0b38d73e7a415caa77b5821be92dd16f70/crontab.c#L845 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Normally it would say this: $ crontab newtab You (grant) are not allowed to use this program (crontab) See crontab(1) for more information
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
In vixie-cron, SUID crontab prevents crontab editing if /etc/cron.allow is empty. If you force the ulimit for open files to be 4, auth check is bypassed but you hit another error lower down :( $ bash -c 'ulimit -n 4; crontab newtab' /var/spool/cron/: mkstemp: Too many open files
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Emulation is not a crime.https://twitter.com/CorelliumHQ/status/1195021066139242497 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Grant Hernandez proslijedio/la je Tweet
Success! The
@fluoroacetate duo got the#Samsung Galaxy S10 to connect to their rogue base station and then pushed a file to the phone. Third year in a row. Off to the disclosure room to get all the details.pic.twitter.com/y5fpJcf3t9
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
How complicated is cellular baseband firmware? At least this complicated: over 150K debugging messages across 932 directories and 2,775 files! Rebuilding the source code skeleton from Samsung S10's Shannon S5000 baseband debugging messages.https://github.com/grant-h/shannon_s5000 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Grant Hernandez proslijedio/la je Tweet
Gathered some of my proof-of-concepts and analysis notes on zero day vulnerabilities that I discovered or researched in the past few years, on my github: https://github.com/badd1e/Disclosures …. Enjoy
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
That patch set did a major refactor of binder from a single global lock to incorporate more fine-grained locking (performance reasons). It's possible that binder was free from most cross-thread races before this and the epoll race window was missed during the refactor
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I wonder how long CVE-2019-2215 has been exploitable. Trying to read through the kernel sources to figure out if there was a specific date. I notice that earlier kernels called `binder_free_thread` instead of `binder_thread_release`. https://lore.kernel.org/patchwork/patch/805046/ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
The writeup and release is here! Tailoring CVE-2015-2215 to Achieve Root -https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
If people are interested, I can release the source/blog on making Qu1ckR00t
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Rooting a Pixel 2 with Magisk from an untrusted app using CVE-2019-2215, no OEM unlock neededpic.twitter.com/yGovBluQj5
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Disabling SECCOMP with a kernel R/W is quite fun! You need to clear the TIF_SECCOMP flag first in thread_info, then the task->seccomp.filter, and finally task->seccomp.mode. Any other combination leads to kernel panics
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Sweet, got my non-debug Pixel 2 into SELinux permissive by modding the P0 PoC!
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Trying to modify the Android kernel exploit PoC to change my cred->security->sid to init (7). When I do this the process locks up even without any syscalls. This talk http://powerofcommunity.net/poc2016/x82.pdf slide 13 mentions this technique. Any thoughts?
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Grant Hernandez proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Grant Hernandez proslijedio/la je Tweet
There’s also a format string bug going the opposite direction (when your phones name is %p%p%p...) https://twitter.com/fransrosen/status/1179458907900698626 …pic.twitter.com/QqEfSRVIot
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.