Town

Exploiting SQLite to pwn the C2 of a password stealer AND gain persistent kernel privs on iOS, by @_CPResearch_ https://research.checkpoint.com/select-code_execution-from-using-sqlite/ …

Testing Race Conditions in Web Applications using #BurpSuite (Community edition works fine too) https://securingtomorrow.mcafee.com/business/testing-race-conditions-web-applications/ … #Web #Pentesting #hacking #infosec #bugbounty

Techblog: CPU isolation of containers at Netflix. Learn how we've used algorithms, Linux primitives and smart OS scheduling to isolate workloads and improve efficiency.https://medium.com/@NetflixTechBlog/predictive-cpu-isolation-of-containers-at-netflix-91f014d856c7 …

BlueHat IL 2019 - @qwertyoruiop Life as an iOS Attacker https://www.youtube.com/watch?v=_YAmsAwSEHA … #riOSsecurity

I published the slides of the presentation I gave @BlueHatIL and @offensive_con about Attacking Edge through the JIT compiler. I also contains exploit code for CVE-2018-8266https://github.com/bkth/Attacking-Edge-Through-the-JavaScript-Compiler …

My browser exploitation repository. Some write-ups are written in korean and some are unavailable now. I'm trying to re-write them in English ! If you got some error in write-up or exploit code, contact me, plz :)https://github.com/vngkv123/aSiagaming …

In this case I used my vectorized emulator (https://gamozolabs.github.io/fuzzing/2018/10/14/vectorized_emulation.html …). This gave me about 400,000 fuzz cases per second. At this speed I was able to do coverage feedback and literally just flipping random bytes. Hundreds of billions of fuzz cases a week makes the mutator easy

The latest recap video is up now, where we do a quick rundown talking about the first two VirtualBox CVEs we looked at on stream:https://youtu.be/EU1bEhz1nEc 

As always, don't forget to subscribe to stay updated with the latest #Jailbreak and #iOS news and tutorials! :-) Join the squad at:https://youtube.com/fce365official