Leone Pontorieri

@lpontorieri

Infosec twitterverse account. Founder

Hook Isle, Mêlée
Vrijeme pridruživanja: travanj 2015.

Tweetovi

Blokirali ste korisnika/cu @lpontorieri

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @lpontorieri

  1. proslijedio/la je Tweet
    28. sij

    Qualys Security Advisory: LPE and RCE (CVE-2020-7247) in OpenSMTPD, OpenBSD's mail server. Erroneous logic in smtp_mailaddr() which validates user and domain. More details and PoC at: PS: "Did you ever play tic-tac-toe?"

    Poništi
  2. proslijedio/la je Tweet
    7. sij

    New blog post. ARM hardware bug. In the specification.

    Poništi
  3. proslijedio/la je Tweet

    6. One official described the planning for the strike as chaotic. The official says that following the attack on an Iraqi base which killed an American contractor circa Dec. 27, Trump was presented a menu of options for how to retaliate. Killing Suleimani was the “far out option”

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet
    25. pro 2019.

    Secrets computer developers don’t want you to know

    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    24. pro 2019.

    Seriously tho don't, as pointed out by qualcomm to me years ago, incident response teams have families, and want the day off tomorrow. Save your 0day drops for January

    Poništi
  6. proslijedio/la je Tweet
    24. pro 2019.

    I think we should totally ban ArrayBuffers as they are mostly used by bad guys. Also, do we really need allocations with any sort of control over objects lifetime? Man, that is so abusable for bad purposes.

    Poništi
  7. proslijedio/la je Tweet
    21. stu 2019.

    1/2 what is legal VPN? For so long, since Iran lunched its national internet, one of their policy was Identification of Internet users and their activities. That plan changed a lot & now they call it Legal VPN. They will give everyone a VPN connection base on their social class

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet

    Jesus! An armoured vehicle of the police tries to break into the Poly University gets literally bombarded with molotov cocktails

    Prikaži ovu nit
    Poništi
  9. proslijedio/la je Tweet
    11. lis 2019.

    Slides from my talk on Flash click2play at . The bugs you might have seen already, the slides have more details on how these were found (including various ideas that didn't work) and how Flash click2play is implemented in Chrome and Edge.

    Poništi
  10. proslijedio/la je Tweet

    Fuck SSL, we should all just go back to http to conserve our family values.

    Poništi
  11. proslijedio/la je Tweet
    20. kol 2019.

    A 30-year-old UAF in win32k. Triggerable from Chrome sandbox Requires __one__ syscall to trigger! Found using Syzkaller with

    Poništi
  12. proslijedio/la je Tweet

    The accounts were proactively identified by our team & suspended for using coordinated attempts to manipulate the public conversation. We're adding the relevant information to our archive of information operations — the largest of its kind in the industry.

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    3. kol 2019.
    Poništi
  14. proslijedio/la je Tweet
    29. srp 2019.
    Odgovor korisnicima

    WAFs are basically, theoretically, intelligent reverse proxy servers. What if the WAF wasn’t told it should not serve up http://169.254.169.254/.../iam... and by default it thought that was ok?

    Poništi
  15. proslijedio/la je Tweet
    3. srp 2019.

    this bug was not aceepted bug bounty :( because it need certain flag( still function that is developing). i disclose exploit code. enjoy~ ./d8 --experimental-wasm-anyref exploit.js

    Prikaži ovu nit
    Poništi
  16. proslijedio/la je Tweet
    20. lip 2019.

    VBScript is alive again in latest Windows 10!

    Poništi
  17. proslijedio/la je Tweet
    20. lip 2019.

    . gave a talk at MOSEC where they shared a stack overflow in FaceTime that was exploitable because it lacked a stack cookie. and I started to wonder how this could happen (1/10)

    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet

    Twitter is fun because you get to be like, “Ducks are good” and someone in your mentions will go, “Um, I’m sorry but my brother is married to a duck scientist and this is a harmful view” and then someone else pops up going, “Your silence about horses is extremely telling”

    Poništi
  19. proslijedio/la je Tweet
    3. lip 2019.

    About to leave Shanghai after + lot of baijiu! Spectacular event, great people, lots of new & old friends. Thanks & kudos to + all the speakers ofc! Hope to see you all soon 🍻

    Poništi
  20. proslijedio/la je Tweet
    31. svi 2019.
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·