Parker Thompson

@m0thran

Information security / RE / fuzzing / other neat things. Lead Engineer at CITL.

Vrijeme pridruživanja: svibanj 2012.

Tweetovi

Blokirali ste korisnika/cu @m0thran

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @m0thran

  1. 1. velj

    I love Infiniband. . . . 6.9 GB/s

    Poništi
  2. 28. sij

    Everytime. I think I'm going to really figure out selinux, then it just throws awful interface and terrible design choices at me and I end up disabling it.

    Poništi
  3. 27. sij

    I have spent the last few years building things on top of cloud platforms. I am so happy I am to be building out hardware for a project again. I personally love spec'ing, assembly, and racking and stacking for a project. Plus I get so much more bandwidth / CPU for so much cheaper

    Poništi
  4. 25. sij
    Poništi
  5. 24. pro 2019.

    I have been enjoying my winter vacation by working on a Hexagon (Qualcomm CPU) project. Hopefully I can get things far enough along for a OSS release sometime soon!

    Poništi
  6. 16. pro 2019.

    I had a ton of fun collecting and doing this study of Android binaries. It was great to see the platform evolve over time. I'm even more excited to dive into the UBsan / CFI features in the future!

    Poništi
  7. 7. pro 2019.

    I had a lovely time talking at thank you to all the wonderful staff and attendees for making it so much fun.

    Poništi
  8. 27. stu 2019.

    You know you have a good fuzzer when all you can dream of is how to get more CPU cores.

    Poništi
  9. 25. stu 2019.

    TIL: the upstream source for the 'zip' in Arch is basically unmaintained. See PKGBUILD: And the sourceforge it pulls from: Last updated (stable): 2008-2009 oof. It looks like debian is maintaining a few custom patches for now.

    Poništi
  10. 22. stu 2019.

    TIL: Quite a lot of software SEGV's if: argv[0][0] == NULL Neat!

    Poništi
  11. 8. stu 2019.

    $ man cal: "cal, ncal — displays a calendar and the date of Easter" But why Easter?

    Poništi
  12. 7. stu 2019.

    Someone knows the answer to this, but I would enjoy taking bets on how many SWIFT message parsers accept XML injection (billion lol's) type bugs...

    Prikaži ovu nit
    Poništi
  13. 7. stu 2019.

    HAHAHAHA I love that this exists (ISO 20022 For Dummies):

    Prikaži ovu nit
    Poništi
  14. 7. stu 2019.

    I'm super excited to be talking about the fuzzer we have been building for CITL at hushcon this year!

    Poništi
  15. 29. lis 2019.

    It just dawned on me, my current side project can be defined as: I am writing c++ code that generates c++ code that disassembles instructions generated by c++ code. Yodawg

    Poništi
  16. 28. lis 2019.

    Why is it that every library that I need to use / extend is never exposed by LLVM in the installed headers / objects....

    Poništi
  17. 24. lis 2019.

    Oh and a final note: there is a lot more data coming out of the sensor than the current features indicate...

    Prikaži ovu nit
    Poništi
  18. 24. lis 2019.

    In summary, Android has locked down the Soli/MotionSense API at many levels. Which is a real disappointment because all I wanted (and the origin of this adventure) was to scroll a recipe while I was cooking with dirty hands. . . that's all I wanted :( 11/11

    Prikaži ovu nit
    Poništi
  19. 24. lis 2019.

    In order to test all these interactions I made a Frankenstein .jar out of converted (dex2jar) .dex files of published apk's. Then injected that jar into a android-studio project to access their APIs. The most fun was just attempting to use the OsloSensor class directly. 10/n

    Prikaži ovu nit
    Poništi
  20. 24. lis 2019.

    3. Final lock out, if all that was not enough the OsloSensor interaction through the HIDL is locked behind the "android.permission.LOCATION_HARDWARE" perm which is a protected perm, again I can't see a way to get it unless your Google. Bummer. 9/n

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·