Max Moroz

@Dor3s

security team, . (& LC↯BC) CTF team. Hopefully all tweets are mine.

Vrijeme pridruživanja: rujan 2010.

Tweetovi

Blokirali ste korisnika/cu @Dor3s

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Dor3s

  1. Prikvačeni tweet
    30. srp 2019.

    "Passive income" opportunity for security researchers: submit your fuzzers to the Chrome Fuzzer Program and receive rewards for vulnerabilities found (with an extra $1K bonus for each vuln). teaches how to do it successfully

    Poništi
  2. proslijedio/la je Tweet
    31. sij

    Today I learned Google recently hit 50% fuzzing coverage in Chrome. Wow.

    Poništi
  3. proslijedio/la je Tweet
    30. sij

    HWASAN (think of it as ASAN v2) has become available to developers on Android outside of Google. If you use C or C++ on Android, please give it a try. HWASAN is also available on Aarch64 Linux with a recent kernel.

    Poništi
  4. proslijedio/la je Tweet
    28. sij
    Poništi
  5. proslijedio/la je Tweet
    14. sij

    We shared an update today on our plans to phase out 3P tracking from the Web over the next two years.

    Prikaži ovu nit
    Poništi
  6. 12. sij

    According to , Chromium had the most commits in 2019 among open source projects: 109K. On average, a new commit was landed every 5 minutes. Quite a challenge for any continuous process, given the size of the codebase and the variety of supported platforms.

    Poništi
  7. 2. sij

    Awesome work, but also a very sad reminder that we're still suffering from dumb integer overflows, unchecked memcpy arguments, and (believe it or not) lack of the NX bit! It's 2020 already and stuff doesn't get less scary.

    Poništi
  8. 14. pro 2019.

    Thanks for the awesome content and fun presentations!

    Prikaži ovu nit
    Poništi
  9. 14. pro 2019.
    Prikaži ovu nit
    Poništi
  10. 13. pro 2019.
    Poništi
  11. proslijedio/la je Tweet
    13. pro 2019.

    Please be aware of the new called "Batching Attack"

    Poništi
  12. proslijedio/la je Tweet
    12. pro 2019.

    The video from my talk on structure-aware fuzzing at Black Hat was posted: I mostly cover libprotobuf-mutator but also discuss libFuzzer custom mutators.

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    11. pro 2019.

    Fuzzing always scale with developers and this is a small token of appreciation for their awesome efforts!

    Poništi
  14. proslijedio/la je Tweet
    10. pro 2019.

    Learn how found and exploited SockPuppet for iOS 12.4, featuring a bonus collaboration with LiveOverflow!

    Poništi
  15. proslijedio/la je Tweet
    8. pro 2019.

    Last day to RSVP to attend the second Bay Area Fuzzer Meetup. Come hear my talk on fuzzing native code in-browser using WebAssembly!

    Poništi
  16. proslijedio/la je Tweet
    8. pro 2019.

    Shoutout to programmers in Sweden: Is there any interest in arranging a meetup? There is one in the Bay area, far far away... Please RT for reach.

    Poništi
  17. proslijedio/la je Tweet
    5. pro 2019.

    OpenSSL CVE-2019-1551: Incorrect consttime modular exponentation, found after 1.5 years of bignum fuzzing at OSS-Fuzz

    Poništi
  18. 5. pro 2019.

    The registration closes this Sunday. Make sure to RSVP if you're in the Bay Area on Dec 12th and want to talk / listen about fuzzing! SPOILER: besides great content, there'll be swag, food, and drinks -- all free of charge :)

    Poništi
  19. proslijedio/la je Tweet
    3. pro 2019.

    Join software security experts and industry leaders on Feb 25th for 2020, a education and community building event. Follow the link here for more info:

    Poništi
  20. proslijedio/la je Tweet
    4. pro 2019.

    Great talk by and on fuzzing at scale with ClusterFuzz.

    Poništi
  21. proslijedio/la je Tweet

    Interesting idea from Google: integrate the security practice of fuzzing in the ordinary software development lifecycle. Now that's a way to articulate devsecops. But what are the chances that the average developer outside Silicon Valley can (or has time to) write fuzzers?

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·