Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @vnik5287
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @vnik5287
-
I'll make my tech report and poc public soon. It was a fun bug affecting most major distributions. one exploit to rule them all w/ all kernel expl mitigation bypasses - no rop chains / hardcoded crap https://duasynt.com/blog/ubuntu-centos-redhat-privesc …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Vitaly Nikolenko proslijedio/la je Tweet
Full analysis and exploit for Windows kernel ws2ifsl use-after-free (CVE-2019-1215) by our researcher
@flxflndy https://labs.bluefrostsecurity.de/blog/2020/01/07/cve-2019-1215-analysis-of-a-use-after-free-in-ws2ifsl/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ROP/JOP pivoting to user space is now back in style https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24cecc37746393432d994c0dbc251fb9ac7c5d72 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
We'll be running our Android kernel exploitation training in Canada (2nd week of April 2020). If there're any other Canadian companies interested in this training during that month, please reach out!
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
null-ptr-deref trigger in nfnetlink on upstream 4.4 kernelshttps://github.com/duasynt/meh/blob/master/nfnetlink1019.c …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
combine with P0 null-page mmap bypass on older kernels / AMD or no-smep systems and you got yourself an easy ret2usr exploit
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
doesn't seem like ubuntu 4.4 LTS kernels want to pull the upstream patch. can still rip <-- 0 with syscall(__NR_clock_gettime, 10, 0)pic.twitter.com/SBceR9K20Y
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ARM boards collection Odroid, HiKey, Rock64, Fireflypic.twitter.com/Dga3Yjo5EN
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Vitaly Nikolenko proslijedio/la je Tweet
Get started with Android kernel exploitation with this new training from veteran trainer
@vnik5287 https://www.offensivecon.org/trainings/2020/android-kernel-security.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
given the recent iOS news, let's all switch to Android ;)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
thanks to slab accounting enabled on a certain cache, a previously non-exploitable bug is now 95+% reliable =)pic.twitter.com/v9ruM8423W
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I think the linux kernel CVE application process needs to change. Attach a trigger/poc with rip control or some overwrite or gtfo :)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Vitaly Nikolenko proslijedio/la je Tweet
A nice paper on using Unicorn+AFL to fuzz arbitrary parsers in OS kernel, without requiring kernel source code. https://www.usenix.org/system/files/woot19-paper_maier.pdf … Tool:https://github.com/fgsect/unicorefuzz …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
still have 1 free sponsored seat (kernel exploitation training) for an undergrad student (Australian universities only). The only catch is you need to meet the minimum course prerequisiteshttps://www.linkedin.com/posts/duasynt_linux-kernel-exploitation-techniques-x86-activity-6564791274975657984-IwSZ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Vitaly Nikolenko proslijedio/la je Tweet
missed that last year. smart universal heap spray technique to exploit UAF in the linux kernel - by
@vnik5287 https://duasynt.com/blog/linux-kernel-heap-spray …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Vitaly Nikolenko proslijedio/la je Tweet
Hello everyone, long time no see! Now begins a series of blog posts about bugs I found and reported of various Android vendors. This very first one is about the exploit chain we used to get remote arbitrary application install on Galaxy S8. Plz enjoy:https://blog.flanker017.me/galaxy-leapfrogging-pwning-the-galaxy-s8/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.