Subreption LLC

@subreption

As a R&D firm, we strive to be realistic and honest, and tread into areas where few have ventured before. Our goal is pioneering something, always.

United States
subreption.com
Vrijeme pridruživanja: studeni 2011.
7 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @subreption

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @subreption

  1. proslijedio/la je Tweet
    21. velj 2019.

    KSPP fairy tale du jour: … (hint: if RANDKSTACK was inspired by stackjacking then how could the supposed inspiring presentation have talked about it? perhaps because in reality it had already existed for almost a decade? :))

    6 proslijeđenih tweetova 13 korisnika označava da im se sviđa
    Poništi
  2. 18. ožu 2019.

    For FreeBSD, DYMASEC-ng provides full kernel heap protection down to the lowest allocation unit, including randomization and integrity protection for meta-data with a ~212 (base GENERIC) vs 220 (w/ almost all features enabled) of measured kernel time impact (synth. benchmark).

    Poništi
  3. 18. ožu 2019.

    The next generation of DYMASEC (originally funded by US DARPA) for Linux provides hypervisor-free protection against all known kernel heap exploitation techniques with <14% performance impact (in concurrent synthetic benchmarks), inc. full uninit-use/use-after-free protection.

    Poništi
  4. 18. ožu 2019.

    After years of doing essentially zero public work, and mostly diversifying our projects involving RF and physical security R&D, we will be publishing some announcements soon, including the next generation of DYMASEC (our dynamic memory safety tech for *BSD/Linux/Windows/HVs)

    3 korisnika označavaju da im se sviđa
    Poništi
  5. 18. ožu 2019.

    The blatant piggybacking -w/o credit- of KERNHEAP/DYMASEC by the KSPP/linux-hardened project (also involving IP from the grsecurity project, easily the most plagiarized pioneering work in our field) goes on:

    1 proslijeđeni tweet
    Poništi
  6. 30. svi 2018.

    Blatant copyright infringement in CopperheadOS, direct match of DYMASEC & KERNHEAP's code to tag SLUB objects: Too bad the DYMASEC algorithm and internals can't be stolen verbatim without earning a ticket to court? :(

    Poništi
  7. 23. ožu 2017.

    DYMASEC/KERNHEAP ref. impl. was registered for IP protection in the US Copyright Office in August 2015: Reg. # TXu001987227 / 2015-08-24 :>

    Poništi
  8. 23. ožu 2017.

    The Fisher-Yates shuffle technique for rand. freelist pointers (Linux) and in-SLAB obj. indexes for FreeBSD was implemented in DYMASEC ~2011

    Poništi
  9. 23. ožu 2017.

    Google "takes" from KERNHEAP/DYMASEC (described in Phrack 66, funded by DARPA CFT c. 2011) without credit:

    1 proslijeđeni tweet
    Poništi
  10. proslijedio/la je Tweet
    8. ožu 2017.

    Without quantifying how much (or little) benefit security development processes achieve, developers *and* consumers are left in the dark.

    13 proslijeđenih tweetova 17 korisnika označava da im se sviđa
    Poništi
  11. 7. ožu 2017.

    When "user" and "industry" reviews give security/antivirus products solid reviews.... but the CIA gives them 0/0.... something is wrong.

    1 reply 3 proslijeđena tweeta
    Poništi
  12. 7. ožu 2017.

    ⚡️ “Vault7 leak exposing the AV industry failings”

    1 korisnik označava da mu se sviđa
    Poništi
  13. 7. ožu 2017.

    The leak is roasting the whole of the AV industry, especially F-Secure, AVG, Avira, some Kaspersky gems. Marketing must be livid.

    2 proslijeđena tweeta
    Poništi
  14. 7. ožu 2017.

    Old news: AV engines plagued by engine/detection time-out related bypasses (AVG, F-Secure et al). So much for truth in advertisement in AV.

    1 korisnik označava da mu se sviđa
    Poništi
  15. 7. ožu 2017.

    When the CIA says your product is "lower tier" and poses "minimal difficulty". AV Industry: worrying about reviews, not "getting owned".

    Poništi
  16. 26. kol 2015.

    The most morally reprehensible form of theft is theft of ideas. It's not merely an IP or $ crime. It sabotages all incentives to innovate.

    1 korisnik označava da mu se sviđa
    Poništi
  17. 26. kol 2015.

    We pulled KERNHEAP away from public availability in 2010 after catching glimpses of abuse similar to what apparently happened to grsecurity.

    Poništi
  18. 18. kol 2015.

    OS X users should direct their hatred where it belongs: its maker. 8 years after MoAB, OS X still plagued with admin group vulnerabilities.

    Poništi
  19. 18. kol 2015.

    Perhaps the Month of X Bugs fad might need resurrection to motivate Google/Apple into competence (re: reactions against , etc).

    1 proslijeđeni tweet 1 korisnik označava da mu se sviđa
    Poništi
  20. 7. kol 2015.

    Google might think Android devices market fragmentation makes exploits difficult. The unfortunate reality:

    1 proslijeđeni tweet
    Poništi

@subreption još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·