Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
Blokirali ste korisnika/cu @nguyencaohoc52
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @nguyencaohoc52
-
lofiboy proslijedio/la je Tweet
Kernel privilege escalation bug in Android affecting fully patched Pixel 2 & others. Reported under 7 day deadline due to evidence of in-the-wild exploit.
@tehjh and I quickly wrote a POC to get arbitrary kernel r/w using this bug, released in tracker. https://bugs.chromium.org/p/project-zero/issues/detail?id=1942 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Interested in Smart TV hacking but don't know where to start? We've done all the legwork for you on the Samsung Q60 TV by
@AlizTheHax0r https://labs.f-secure.com/blog/samsung-q60r-smart-tv-opening-up-the-samsung-q60-series-smart-tv/ …#pwn2ownHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Let's talk about binary code coverage and implement it!https://www.twitch.tv/gamozo
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
We've decided to name this vulnerability as V-gHost. Details can be found at page https://blade.tencent.com/en/advisories/v-ghost/ …https://twitter.com/tencent_blade/status/1174510397077897217 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Finally got the
#bluekeep exploit working on a physical system. I had an active user RDP in while I was launching the exploit and I had to use GROOMSIZE of 100. Found 100 was the most 'stable' and didn't BSOD right away https://github.com/rapid7/metasploit-framework/pull/12283#issuecomment-532252892 …@busterbcook@TheColonialHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Even more devices now in part three of the Hyper-V blog series! This time, we review the design and potential attack surface of the vm worker process, and as always talk about some vulns that were in the area. Check it out and let me know what you think!https://msrc-blog.microsoft.com/2019/09/11/attacking-the-vm-worker-process/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Slides from my Red Team Methodology - A Naked Look talk.
#DerbyConhttps://www.slideshare.net/JasonLang1/red-team-methodology-a-naked-look-169879355 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
BlueKeep via SMBLoris + IP Frags
https://github.com/zerosum0x0/CVE-2019-0708/blob/master/poc/cve_2019_0708_bluekeep.py#L97 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
RDP hijacking — how to hijack RDS and RemoteApp sessions transparently to move through an organisation
#infosec#pentest#redteamhttps://doublepulsar.com/rdp-hijacking-how-to-hijack-rds-and-remoteapp-sessions-transparently-to-move-through-an-da2a1e73a5f6 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
DrSancov, another tiny tool I've been finding useful lately. It's a DynamoRIO plugin which mimics the output of ASAN and SanitizerCoverage, so that you can easily plug in a closed-source app into a fuzzing framework expecting a typical open-source target.https://github.com/googleprojectzero/DrSancov …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Finished my topic 'Hunting in the Near Field: An Investigation of NFC-related bugs of Android' on HITCON 2019 in Taipei. Great conference with great people. Here are the slides & whitepaper(https://github.com/hyrathon/HITCON2019 …), PoCs(https://github.com/hyrathon/PoCs )
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
lofiboy proslijedio/la je Tweet
@JosephBialek and I just pushed our BlackHat 2019 slides here: https://github.com/microsoft/MSRC-Security-Research/tree/master/presentations/2019_08_BlackHatUSA … Outlook and Hyper-V exploits on the menu!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Began curating a list of Hyper-V exploitation resources, hope it can be of use to anyone interested in starting Hyper-V security research: https://github.com/shogunlab/awesome-hyper-v-exploitation …
#ExploitDev#HyperVpic.twitter.com/fS6jAmajin
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
A curated list of Hyper-V exploitation resources, fuzzing and vulnerability researchhttps://github.com/shogunlab/awesome-hyper-v-exploitation …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Our research team have just finished analyzing
#DeJaBlue. It looks like Microsoft was vulnerable to a variant on the vulnerability we found last year in FreeRDP: https://cpr-zero.checkpoint.com/vulns/cprid-2006/ …@NetanelBenSimon@EyalItkinpic.twitter.com/XjLnsZQRPf
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Got an RDP crash PoC working for DejaBlue! Either CVE-2019-1181 or CVE-2019-1182 because it works on Win7 to Win10. Nice heap overflow with arbitrary data + size, should be fairly easy to get reliable RCE.https://www.youtube.com/watch?v=oDlgFWJ33rI …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Taking control of
#VMware through UHCI. In part 1 of his analysis,@abdhariri looks at the bug used by@fluoroacetate during the last#Pwn2Ownhttp://bit.ly/2J5gmGxHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
Taking control of
#VMware through UHCI. In part 2 of this analysis, our summer intern@0xalsaheel details the exploit used by@fluoroacetate during the last#Pwn2Ownhttp://bit.ly/2MmL9jFHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
lofiboy proslijedio/la je Tweet
A nice paper on using Unicorn+AFL to fuzz arbitrary parsers in OS kernel, without requiring kernel source code. https://www.usenix.org/system/files/woot19-paper_maier.pdf … Tool:https://github.com/fgsect/unicorefuzz …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.