Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @taviso
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @taviso
-
Prikvačeni tweet
I finally wrote a small tool I've wanted for a long time: A parallel testcase minimizer. It's called halfempty, and I'm already finding it useful as part of my fuzzing workflow. /cc
@lcamtuf https://github.com/googleprojectzero/halfempty …pic.twitter.com/qleqrRbTDy
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
wow, avast are actually winding down jumpshot.https://twitter.com/mikko/status/1222855718841266176 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
Qualys Security Advisory: LPE and RCE (CVE-2020-7247) in OpenSMTPD, OpenBSD's mail server. Erroneous logic in smtp_mailaddr() which validates user and domain. More details and PoC at: https://www.openwall.com/lists/oss-security/2020/01/28/3 … PS: "Did you ever play tic-tac-toe?"
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
AV stands for: Additional Vulnerabilitieshttps://twitter.com/matalaz/status/1221449870340493313 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
Earlier today we published the details of a set of vulnerabilities in Safari's Intelligent Tracking Prevention privacy mechanism: https://arxiv.org/abs/2001.07421 . They are... interesting. [1/9]
@kkotowicz@empijei@we1xPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
No, I can assure you that they still haven't fixed these issues, which is what made that blog post last year so weird. Apple didn't disclose the vulnerabilities or appropriately credit the researchers, but put out a post implying they fixed "something".
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
This. It's hard to imagine how Apple are going to resolve this, it took a long time to accept that the auditor problems were fundamental, and it's hard to see how itp is any different here. Prediction: after a few failed attempts to rework it, they'll come to the same conclusion.https://twitter.com/justinschuh/status/1220021377064849410 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
This is a pretty good reminder that any invasive heuristics in the browser - be it XSS filters or privacy protections - often cause more problems than they address: https://arxiv.org/ftp/arxiv/papers/2001/2001.07421.pdf …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
If you're a Back to the Future fan and haven't seen "Go to the Head of the Class", it's a real treat. It's like the band getting back together, Zemeckis, Gale, Spielberg, Lloyd, etc.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
I don't know why
@taviso describes this as a rumor. I've seen him perform with my own eyes.https://twitter.com/taviso/status/951138750116974592 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
If vendors had their way, advisories would have less info in them than a fortune cookie.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
The NSA advisory is much more helpful than Microsoft's.https://twitter.com/DAlperovitch/status/1217157353658818562 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Will confirms all X.509 validation broken, not just code signing. Okay, I'm back on the hype train, that's pretty bad.https://twitter.com/wdormann/status/1217144867173912582 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I'm reliably informed that the washington post don't know what they're talking about, it's not an authenticode issue, and is in fact a big deal. https://twitter.com/taviso/status/1217114527688318976 …
Tweet je nedostupan.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
I'm very excited to share my blogpost series (including PoC code) about a remote, interactionless iPhone exploit over iMessage: https://googleprojectzero.blogspot.com/2020/01/remote-iphone-exploitation-part-1.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
The benefit to security of any disclosure policy tends to be inversely proportional to how loudly vendors cheer for it
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I'm at
#AGDQ2020, this was such a great moment, he had a prop to explain how he subverted the logic that warps the player back if they fall off through the map to save 40 seconds. It took longer to explain how it worked
https://twitter.com/clementeworks/status/1214348730754904065 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Interesting question, is this a UAC bypass? My first thought is no, because UIPI means you can't automate the interaction. Therefore, the only way to exploit it is if you could have just clicked OK in the UAC consent anyway.... right? (yes, I know UAC is not a supported boundary)https://twitter.com/harr0ey/status/1211075032400760832 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Somebody please make a block list of all these OST people.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
Yeah I think we can definitely get that to 100%https://twitter.com/x0rz/status/1209583796863016960 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tavis Ormandy proslijedio/la je Tweet
The unscrupulous have the command of much of this kind of knowledge without our aid; and there is moral and commercial justice in placing on their guard those who might possibly suffer therefrom.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
