linhlhq

@linhlhq

I’m a security researcher & CTF player, member of AceBear

Việt Nam
github.com/linhlhq
Vrijeme pridruživanja: siječanj 2018.
6 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @linhlhq

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @linhlhq

  1. Prikvačeni tweet
    8. kol 2019.

    When I analyzed CVE-2019-0887, bug in RDP's clipboard feature. Copy file between client and server, "mstsc.exe" did not check the file path in FILEDESCRIPTOR structure, leading to Path-Traversal vulnerability. However, I found a more interesting feature :P

    8 proslijeđenih tweetova 55 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  2. proslijedio/la je Tweet
    prije 5 sati

    Just posted my talk "Keeping Windows Secure" touching on security assurance process and vuln research in Windows from 2019:

    7 replies 63 proslijeđena tweeta 156 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    3. velj

    TeamViewer stored user passwords encrypted, not hashed, and the key is now public

    21 reply 847 proslijeđenih tweetova 1.209 korisnika označava da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    2. velj

    I’ve just uploaded my Jailbreak for the iPad Pro (2017) to GitHub. Right now, SSH and Sileo can be installed. Due to lack of devices, I cannot currently implement support for other devices. Feel free to create PRs if you would like to help me!

    149 proslijeđenih tweetova 532 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    31. sij

    Hardware Debugging for Reverse Engineers Part 1: SWD, OpenOCD and Xbox One Controllers Hope you enjoy! As always ping me with any questions

    1 reply 59 proslijeđenih tweetova 128 korisnika označava da im se sviđa
    Poništi
  6. proslijedio/la je Tweet
    30. sij

    New open source project from Google: OpenSK. A FIDO U2F and FIDO2 implementation for Nordic nRF52840 board. I'm not an expert but it looks like a but with an open source firmware and 5 times cheaper... and great STL files to 3D print the case ;)

    6 replies 68 proslijeđenih tweetova 104 korisnika označavaju da im se sviđa
    Poništi
  7. proslijedio/la je Tweet
    31. sij

    Fuck it, I can't focus at all today. It's a mess, sorry.. I've also uploaded the discussed bug to github. Maybe someone can make sense of it. It's a junction bug that's a little more complicated then a simple "bait and switch". Hope it's useful to someone.

    6 replies 66 proslijeđenih tweetova 236 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    30. sij

    Part II: Returning to Adobe Reader symbols on macOS

    15 proslijeđenih tweetova 56 korisnika označava da im se sviđa
    Poništi
  9. proslijedio/la je Tweet
    30. sij

    🎉 New blogpost :) Quick blogpost about how I found a OOM/DoS bug in a famous / package using coverage-guided fuzzer. ➡️ Fuzzer: Jsfuzz by ➡️ Target: wasm-parser ➡️ Bug: DoS/OOM

    1 reply 61 proslijeđeni tweet 168 korisnika označava da im se sviđa
    Poništi
  10. proslijedio/la je Tweet
    30. sij

    Writing a Bootloader

    57 proslijeđenih tweetova 185 korisnika označava da im se sviđa
    Poništi
  11. proslijedio/la je Tweet
    30. sij

    HWASAN (think of it as ASAN v2) has become available to developers on Android outside of Google. If you use C or C++ on Android, please give it a try. HWASAN is also available on Aarch64 Linux with a recent kernel.

    29 proslijeđenih tweetova 101 korisnik označava da mu se sviđa
    Poništi
  12. proslijedio/la je Tweet
    30. sij

    Just published a follow-up to my Adobe Reader symbols story on the Project Zero blog. Turns out there's even more debug metadata to be found in some old (and new) builds, including private CoolType symbols. Enjoy!

    85 proslijeđenih tweetova 212 korisnika označava da im se sviđa
    Poništi
  13. proslijedio/la je Tweet
    27. sij

    macOS/iOS: ImageIO: heap corruption when processing malformed TIFF image

    1 reply 60 proslijeđenih tweetova 221 korisnik označava da mu se sviđa
    Poništi
  14. proslijedio/la je Tweet
    23. sij

    Microsoft have released an open source tool to analyze source code for vulnerabilities in almost any modern language:

    9 replies 342 proslijeđena tweeta 675 korisnika označava da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    19. sij

    There is known 32 breakpoints kernel debugging limit in WinDBG. But using EXDi extension you can add 671 breakpoints (f.e. command "bp nt!nt*" with many limitation warnings), and they will be work. Breakpoint number 332 was triggered on screenshot.

    8 proslijeđenih tweetova 47 korisnika označava da im se sviđa
    Poništi
  16. proslijedio/la je Tweet
    18. sij

    RDP to RCE: When Fragmentation Goes Wrong

    1 reply 35 proslijeđenih tweetova 76 korisnika označava da im se sviđa
    Poništi
  17. proslijedio/la je Tweet
    16. sij

    [BLOG] Reverse Engineering a Philips TriMedia CPU based IP Camera - Part 3 by :

    33 proslijeđena tweeta 54 korisnika označavaju da im se sviđa
    Poništi
  18. proslijedio/la je Tweet
    16. sij

    CVE-2020-0601 - PoC for code signing PE files using a Certificate Authority using ECC

    5 replies 336 proslijeđenih tweetova 578 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  19. proslijedio/la je Tweet
    15. sij

    Got a crash PoC working for one of the Remote Desktop Gateway bugs. Will probably do a write up tomorrow.

    18 replies 133 proslijeđena tweeta 655 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    14. sij

    The January security patches from and are here. Join as he breaks down this month's release and offers guidance on test & deployment prioritization.

    11 proslijeđenih tweetova 20 korisnika označava da im se sviđa
    Poništi
  21. proslijedio/la je Tweet
    13. sij

    Anyone know if it's possible to have IDA load debug symbols embedded in the "stabs" format (), in a clean install or with some plugin? Or any other static analysis tools that support stabs other than objdump?

    1 reply 6 proslijeđenih tweetova 23 korisnika označavaju da im se sviđa
    Poništi

@linhlhq još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·