Robert Swiecki

@robertswiecki

Information Security @ Google. Author of honggfuzz, nsjail, intrace ... Co-author "Applied Reverse Engineering" [book in pl]. Personal profile here.

Zurich
Vrijeme pridruživanja: rujan 2010.

Tweetovi

Blokirali ste korisnika/cu @robertswiecki

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @robertswiecki

  1. proslijedio/la je Tweet
    27. sij
    Odgovor korisniku/ci

    There's a (opensource) antivirus project that wraps clamav in nsjail. I mean: there is ONE. In total.

    Poništi
  2. proslijedio/la je Tweet

    Piątek, piąteczek to również nasz podcast , a dzisiaj rozmawia z i o CTF-ach, wykrywaniu 0-day i konfliktach w cyberprzestrzeni. Tak wyjątkowi goście oznaczają, że zdecydowanie warto posłuchać➡️

    Poništi
  3. proslijedio/la je Tweet

    🎉 First security blogpost of 2020 🎉 Some people ask me, so here is how to start fuzzing APIs of JavaScript engines like Chrome/V8. In this blogpost, I'm using: ✅ Dharma/Domato ✅ Chrome/v8 ASan pre-built ✅ Honggfuzz ;)

    Poništi
  4. 27. stu 2019.

    Solving binary-only CTF challenges with honggfuzz and qemu binary instrumentation -

    Poništi
  5. proslijedio/la je Tweet
    19. stu 2019.

    I made sandbox-RIDL and sandbox-procbox this year. In the first, you just had to write an exploit for RIDL and the second was CVE-2019-5736 with a twist. You had to overwrite /proc/1/exe in a namespace sandbox but this was only possible by racing the kernel.

    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet
    12. stu 2019.

    Weil der deutsche Artikel "die" von englisch trainierten Algorithmen als "stirb" gelesen wird, kann es einem passieren, dass Twitter einen blockt, wenn man "die Boomer" schreibt. 12 Stunden Sperre für mich, weil Twitter spezielle Boomer-Schutzprogramme am laufen hat.

    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    26. lis 2019.

    Why are hackers always depicted in hoodies and gloves and masks? Most of time they hack without even bothering to put on pants

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    30. lis 2019.

    Oh look, dangling terrorism and pedophilia to justify what is ultimately used for human right violation. It's not like we ever heard that one before. 🙄

    Poništi
  9. 30. lis 2019.

    And now something from the good, old days - a stand-alone '/bin/cd' binary. You will no longer have to use those shady shell's built-ins with this :) -

    Poništi
  10. 28. lis 2019.

    honggfuzz-rs has already found dozens of bugs in Rust packages, the python-hfuzz might help you to do the same with your python code: (from the author of honggfuzz-qemu).

    Poništi
  11. proslijedio/la je Tweet
    14. lis 2019.

    Yara 3.11.0 now runs inside Sandboxed API (SAPI) to limit the impact of parser bugs.

    Poništi
  12. proslijedio/la je Tweet
    22. lis 2019.

    Our team member Stephan () identified a remote unauthenticated DoS vulnerability (CVE-2019-18217) in ProFTPD before 1.3.7rc2, with the use of one of his favorite tools . He is happy to explain more, so get in touch with him when interested!

    Poništi
  13. proslijedio/la je Tweet
    17. lis 2019.

    I'm not exaggerating when I call site isolation the single greatest advance in browser security since the creation of the sandbox. It has fundamentally changed the kinds of guarantees the browser can provide and sets the strongest security baseline of any real-world platform.

    Poništi
  14. proslijedio/la je Tweet
    8. lis 2019.
    Poništi
  15. 12. lis 2019.

    Fuzzing NetBSD rump-kernel with (among others) honggfuzz, by Kamil Rytarowski -

    Poništi
  16. 11. lis 2019.
    Poništi
  17. proslijedio/la je Tweet

    The in Literature for 2018 is awarded to the Polish author Olga Tokarczuk “for a narrative imagination that with encyclopedic passion represents the crossing of boundaries as a form of life.”

    Prikaži ovu nit
    Poništi
  18. 8. lis 2019.

    A couple of users asked me to implement corpus minimization in honggfuzz. Here it is (just add -M to your cmdline flags):

    Poništi
  19. proslijedio/la je Tweet
    7. lis 2019.

    "Good science fiction predicts not the automobile but the traffic jam."

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·