I'm publishing some
research today, a major design flaw in Windows that's existed for almost *two decades*. I wrote a blog post on the story of the discovery all the way through to exploitation.
https://googleprojectzero.blogspot.com/2019/08/down-rabbit-hole.html …
-
Show this thread
-
Here's a repository of all the code and tools I developed to explore this attack surface.https://github.com/taviso/ctftool
16 replies 268 retweets 799 likesShow this thread -
Replying to @taviso
What's interesting is that Windows Defender AV detects the pre-compiled binary files in the github release however the EXACT SAME CODE that I compiled myself as instructed (VS2019+GNU make) gets past just fine. Or maybe that sort of thing with AV shouldn't actually be surprising?pic.twitter.com/bOvWIGFhhN
2 replies 0 retweets 5 likes
Replying to @wdormann
You're trying to apply logic and reasonable expectations to antivirus, that's not going to work 
4:11 PM - 19 Aug 2019
0 replies
0 retweets
8 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.