Jason Matthyser

@pleasew8t

Security research. Clear my bash history when I die.

Vrijeme pridruživanja: listopad 2016.
12 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @pleasew8t

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @pleasew8t

  1. 1. velj

    Thanks for some cool merch!

    Poništi
  2. 28. sij

    The WAN interface on this router has really led me down an interesting path.

    1 korisnik označava da mu se sviđa
    Poništi
  3. proslijedio/la je Tweet
    20. sij

    2020: still "2" lines of code to get browsers saved creds and so many security products with no resilient detection/prevention for the same issue

    52 proslijeđena tweeta 215 korisnika označava da im se sviđa
    Poništi
  4. 19. pro 2019.

    I’m super late to the party, but this is really fun to play with

    1 korisnik označava da mu se sviđa
    Poništi
  5. 10. lis 2019.

    This is the coolest thing any game I have ever purchased has done for me -

    1 reply
    Poništi
  6. 29. kol 2019.

    Nothing like a bit of carpentry to get away from computering for a day or so. My measurements are off, but it’s mine.

    3 korisnika označavaju da im se sviđa
    Poništi
  7. 17. kol 2019.

    * javascript trying to make cross-origin requests * browser: cross-origin requests are disallowed by default * browser bug enters * browser: the intended behaviour is for cross-origin requests to be disabled by default * browser bug fixed, dev enters * browser: omw

    Poništi
  8. 16. kol 2019.

    That moment when you look at group stages results and notice Liquid vs <whoever> with score 1-1, and you just know Liquid threw the first game and rekt the second.

    1 reply
    Poništi
  9. 14. kol 2019.

    Obviously the idea here to make it continue fuzzing after crashes.

    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  10. 14. kol 2019.

    I built something with ASAN, and I keep getting crashes in a library it loads - which wasn't built with ASAN. I tried building with -fsanitize-recover=address and running with ASAN_OPTIONS=halt_on_error=0, but it doesn't work. Anybody have an idea for a workaround?

    1 reply 1 proslijeđeni tweet 3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  11. 11. kol 2019.

    python CppHeaderParser into protocol buffers into libprotobuf-mutator into libfuzzer

    1 proslijeđeni tweet
    Poništi
  12. 8. kol 2019.

    My favourite part of this week was finding a privesc in a product YouTube constantly shows me ads for.

    4 korisnika označavaju da im se sviđa
    Poništi
  13. 4. kol 2019.

    This is so bloody frustrating. Trying to trigger a crash with a known JIT bug. Doesn't work. Then, after many hours, I decide to move the code to outside of a main function, and then it works. How does that even make a difference?

    1 korisnik označava da mu se sviđa
    Poništi
  14. 27. srp 2019.

    That moment when you realize debugging code you added triggered JIT bailouts. It's both sad and exciting. Sad that days of work has gone down the drain. Exciting that days of work has to be revisited with new found knowledge.

    1 korisnik označava da mu se sviđa
    Poništi
  15. 25. srp 2019.

    Since I observed that above a certain size the engine would revert to a call mir opcode, mucking up my dependencies.

    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  16. 25. srp 2019.

    To add to this - I also broke up the function to do something like for (..., i < 3, ...) { for (..., j < 10, ...) { var a = new Uint8Array(<max alloc bytes>/10); ... another 9 times ... } }

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  17. 25. srp 2019.

    I've tried something like , but used the Uint8Array constructor to use the newtypedarray mir code to keep dependencies sane.

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  18. 25. srp 2019.

    Anybody know how to trigger gc from within a JIT'ed function in Spidermonkey?

    1 reply 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  19. 21. srp 2019.

    This is what my life has come to. (gdb) p (*((JSFunction*)((long int)vp[2] - 0xfffe000000000000))).u.native.extra.jitInfo_

    20 korisnika označava da im se sviđa
    Poništi
  20. 19. srp 2019.

    I’m following a “so close, yet so far” approach with this JIT research. Everytime I come really close to something interesting, it completely falls apart. As an added bonus, I muck up the PoC enough that I can’t get it back to when it was working.

    2 korisnika označavaju da im se sviđa
    Poništi

@pleasew8t još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·