mj0011

@mj0011sec

CSTO of Qihoo360/360Safe Group, Founder of team 360Vulcan. Opinions are my own.

Vrijeme pridruživanja: prosinac 2010.

Tweetovi

Blokirali ste korisnika/cu @mj0011sec

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @mj0011sec

  1. 29. sij

    It’s worth mentioning that highest award was to Guang Gong of 360 Alpha team, for his Pixel 3/4 pwning chain

    Poništi
  2. 28. sij

    The 360 Alpha team helped Apple to fix 0-click RCE & memory leak bugs in CoreBluetooth, which could allow attackers near by to remote control any Mac systems with zero interaction.

    Poništi
  3. 5. pro 2019.

    VMWare just patched the ESXi remote vulnerability that 360Vulcan used to won VM escape entry in 2019. It get rates 9.8 CVSS score.

    Poništi
  4. proslijedio/la je Tweet
    16. stu 2019.

    Verified to be a success! Congrats to 360Vulcan on wining $200,000 - the highest bonus of 2019!

    Poništi
  5. proslijedio/la je Tweet
    15. stu 2019.

    Congrats! All the three Edge exploits are confirmed to be success! Teams ddd and 360vulcan both achieved RCE + sandbox escape, so each earned $55,000. Team .(dot) get $10,000 with RCE.

    Poništi
  6. 5. stu 2019.

    A bit boring this year MP2O, all easy targets,routers, xiaomi oppo and Samsung😴... Looking forward to see how former p2o players(Vulcan/Keen/Chaitin...) pwn on next weekend.

    Poništi
  7. proslijedio/la je Tweet
    11. lis 2019.

    Apple CEO Tim Cook defends his company's decision to remove an app used by Hong Kong protesters

    Poništi
  8. proslijedio/la je Tweet
    7. lis 2019.

    2019年10月7日 香港暴徒大肆破壞地鐵設施 堵路 毀壞商店 Hong Kong City of Violence via

    Poništi
  9. proslijedio/la je Tweet
    27. ruj 2019.

    I will be presenting at CodeBlue this year to go through all the major windows script engines(vb,jscript,jscript9,chakracore) with more interesting bugs like : , welcome to join&discuss if you are interested :)

    Poništi
  10. 27. ruj 2019.
    Poništi
  11. 7. kol 2019.
    Poništi
  12. proslijedio/la je Tweet
    7. kol 2019.

    Feel lucky and super excited to be #1 on this year’s MSRC most valuable security researcher list. Thanks to and congrats to all guys on the list from Vulcan Team. Thanks to all MSRC guys for their kindly help!

    Poništi
  13. 23. svi 2019.

    In case you don’t know: it’s a stable remote code execution demo for CVE-2019-0708 on Windows 7 x64

    Prikaži ovu nit
    Poništi
  14. 23. svi 2019.

    Well, too lazy to pop a calc :)

    Prikaži ovu nit
    Poništi
  15. 20. svi 2019.

    CVE-2019-0708 remote scan tool by 360Vulcan team. Detect the recent RDP bug via RDP packet behavior, without trigger the final bug path(no BSOD or any side effect on the target system), ask for it to scan your network by sending mail to cert at

    Poništi
  16. proslijedio/la je Tweet

    Researcher reveals details of a recently discovered remote iOS ≤ 12.1.2 on , which Apple patched yesterday with the release of iOS 12.1.3 Just visiting a specially crafted remote webpage via Safari can compromise/jailbreak your device

    Poništi
  17. 2. sij 2019.

    Crew of 360IceSword Lab was rewarded highest MSRC bounty ever via reporting a Hyper-V vulnerability, we may release details next month.

    Poništi
  18. proslijedio/la je Tweet

    New attacks were discovered against a Russian polyclinic, exploiting a Flash vulnerability (CVE-2018-15982). The vul has been reported to Adobe and the patch was released already.

    Poništi
  19. 28. stu 2018.

    Surely those are not vulnerabilities, especially the last one, dll side loading for installer? Symc don’t understand/care about vuln and just waste cve numbers to keep you silent

    Poništi
  20. proslijedio/la je Tweet
    25. stu 2018.
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·