Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @h0wlu
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @h0wlu
-
Prikvačeni tweet
A while back I did a quick fuzzing exercise on Google Chrome <portal> element https://blog.redteam.pl/2019/12/chrome-portal-element-fuzzing.html …
@redteamplHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
Nice collection of chrome sandbox escape POCs/exploits and methodology, go check it out !https://github.com/allpaca/chrome-sbx-db …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
My first blog post on browser exploitation for
@infosectcbr. I'll look at how to pop xcalc on current Linux Spidermonkey given a relative (oob) rw bug. Spidermonkey is the JavaScript Engine in Firefox. Exploit code also supplied. https://blog.infosectcbr.com.au/2020/01/firefox-spidermonkey-js-engine.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
Whoever fights monsters should see to it that in the process he does not become a monster. And if you gaze long enough into an abyss, the abyss will gaze back into you. WarCon V (Pentagram Edition) scheduled for 29 & 30th May 2020 \m/
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
Just published a new blog post "Deceiving blue teams using anti-forensic techniques" https://blog.redteam.pl/2020/01/deceiving-blue-teams-anti-forensic.html …
@redteampl#redteam#redteaming#threathunting#blueteampic.twitter.com/zhZ0JMAJCpHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Just got rewarded for reporting another UAF in Google Chrome :)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
Writeup on how I made $40,000 breaking the new Chromium Edge using essentially two XSS flaws.https://leucosite.com/Edge-Chromium-EoP-RCE/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chrome 77 September release notes have just been updated with CVE-2019-13766 that I reportedhttps://chromereleases.googleblog.com/2019/09/stable-channel-update-for-desktop.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
https://source.chromium.org/ new Code Search !! Yee~
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
Good thing people are looking at <portal>
It also introduces new way to pass data across origin (just like postMessage) where you can't tell which origin sent the data
https://github.com/WICG/portals/issues/162 …https://twitter.com/h0wlu/status/1203035231164481536 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
IE: Use-after-free in JScript arguments during toJSON callback https://bugs.chromium.org/p/project-zero/issues/detail?id=1947 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
I am starting a new thing named Research Notes, which is the open source fraction of my research notebook on systems internals, vulnerability discovery and exploit development: http://re.alisa.sh And the first Research Note: “iBoot address space” http://re.alisa.sh/notes/iBoot-address-space.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
CVE-2019-1356 - Microsoft Edge (EdgeHTML) Local file disclosure + EoP write uphttps://leucosite.com/Edge-Local-File-Disclosure-and-EoP/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
Chrome: Site Isolation bypass and local file disclosure via Payment Handler API https://bugs.chromium.org/p/project-zero/issues/detail?id=1928 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
WebKit: Integer overflow in NodeRareData::m_connectedFrameCount can lead to UXSS and type confusion https://bugs.chromium.org/p/project-zero/issues/detail?id=1919 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
WebKit: Universal XSS in JSObject::putInlineSlow and JSValue::putToPrimitive https://bugs.chromium.org/p/project-zero/issues/detail?id=1914 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
JSC: Type confusion during bailout when reconstructing arguments objects https://bugs.chromium.org/p/project-zero/issues/detail?id=1924 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
Gathered some of my proof-of-concepts and analysis notes on zero day vulnerabilities that I discovered or researched in the past few years, on my github: https://github.com/badd1e/Disclosures …. Enjoy
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
JSC: GetterSetter type confusion during DFG compilation https://bugs.chromium.org/p/project-zero/issues/detail?id=1915 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pawel Wylecial proslijedio/la je Tweet
WebKit: Universal XSS in HTMLFrameElementBase::isURLAllowed https://bugs.chromium.org/p/project-zero/issues/detail?id=1916 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.