Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @oldfresher
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @oldfresher
-
Guang Gong proslijedio/la je Tweet
Read what the
@googleChrome and other@GoogleVRPs have been up to in 2019! https://security.googleblog.com/2020/01/vulnerability-reward-program-2019-year.html …pic.twitter.com/7NaXq01Ywa
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
The 360 Alpha team helped Apple to fix 0-click RCE & memory leak bugs in CoreBluetooth, which could allow attackers near by to remote control any Mac systems with zero interaction.https://support.apple.com/en-us/HT210919
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
Android: ashmem readonly bypasses via remap_file_pages() and ASHMEM_UNPIN https://bugs.chromium.org/p/project-zero/issues/detail?id=1949 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
We're excited to announce
#Pwn2Own Vancouver 2020 with new categories and returning partners,#Microsoft &@Tesla along with sponsor@VMware. More than $1,000,000 USD available - plus a Model 3! Details at http://bit.ly/2QYMMUF#P2OVancouverHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
PoC for Android CVE-2019-2107 RCE https://github.com/marcinguy/CVE-2019-2107 …
#IoTSecurity#AndroidSecurity#Infosecpic.twitter.com/UXRVoSmUii
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
ICYMI
@Android published guidance this week on how to sync the kernel to upstream LTS. Syncing to LTS is critical for Android device security. While it's only step 1, kudos to Android for taking a step in the right direction!https://source.android.com/devices/architecture/kernel/linux-stable-merges …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
Attacking iPhone XS Max
#MobileSecurity#iOSsecurity#BHUSA2019 by Tielei Wang and@windknown SLIDES: https://i.blackhat.com/USA-19/Thursday/us-19-Wang-Attacking-IPhone-XS-Max.pdf … VIDEO: https://youtu.be/8cOx7vfszZU pic.twitter.com/9wJrT0P6y2
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
What’s Up with WhatsApp - a detailed walk through of Reverse Engineering CVE-2019-3568
#MobileSecurity#AndroidSecurity#JailbreakSecuritySummit by@maddiestone SLIDES: https://github.com/maddiestone/ConPresentations/raw/master/Jailbreak2019.WhatsUpWithWhatsApp.pdf … VIDEO: https://vimeo.com/377181218 pic.twitter.com/J4M5inCidC
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
This is a really great overview of modern fuzzing methodology. Thanks for sharing Jonathan!https://twitter.com/metzmanj/status/1205222885406543874 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
CVE-2019-13734, CVE-2019-13750, CVE-2019-13751, CVE-2019-13752, CVE-2019-13753 WebSQL, 3 of them were used on TFC(https://chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html …).
Sorry due to responsible disclosure I didn't reply to some DMs a few days eariler about asking me what I used on TFC.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
iOS on QEMU. Super cool project: https://alephsecurity.com/2019/06/25/xnu-qemu-arm64-2/ … With Checkm8, and this, there's no real need for 'research devices'. The only thing left is to
#FreeTheSandbox on PAC enabled prod devices and we're set.Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
Android
#StrandHogg vulnerability Vulnerability allows malicious app to masquerade as any other app on the device. So, if you launch Facebook, malware is executed. See video demo how it works. https://promon.co/security-news/strandhogg/ …@Promon_Shieldpic.twitter.com/F4Jie8bnQ1Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
Linux Privilege Escalation using Capabilitieshttps://www.hackingarticles.in/linux-privilege-escalation-using-capabilities/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Guang Gong proslijedio/la je Tweet
Xiaomi Mi6 WiFi Captive Portal Remote Code Execution (Pwn2Own 2018)
#MobileSecurity#AndroidSecurity [writeup] by@FSecureLabs https://labs.f-secure.com/advisories/xiaomi-wifi/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
New tricks necessary for debugging v8 with lldb recently: To map the source: (lldb) settings set target.source-map "../../" "/path/to/v8/dir" Somehow v8::internal::Object is now ambiguous, so: (lldb) p _v8_internal_Print_Object(*((void**)(v8_local.val_)))
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
CodeQL for latest XNU, amazing work ! https://semmle.com/large-oss-projects …pic.twitter.com/10BM6g0Zwr
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
New Research Note: “iBoot heap internals” https://re.alisa.sh/notes/iBoot-heap-internals.html … This is a logical advancement of my previous Research Note: “iBoot address space” https://re.alisa.sh/notes/iBoot-address-space.html … in which I explore Apple’s bootchain internals for the purposes of vulnerability research and exploit dev.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Yet another complete full-chain RCEs of pixel device found by me, I'll disclose the detail of the exploit at a proper timehttps://twitter.com/evankirstel/status/1197618184880177152 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Guang Gong proslijedio/la je Tweet
Project Zero blog: "Bad Binder: Android In-The-Wild Exploit" by Maddie Stone (
@maddiestone) - https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
Providing POCs helps defenders more than attackers. Defenders often use POCs to build detections and develop new solutions to mitigate not just the big but also exploit techniques.