noar

Happy to share the release of fashion tool, to compute files—and match files according to—cryptographic digests. The project is written in Swift and supports many algorithms including CryptoKit Hash, SSDeep (C bridging), TLSH (C wrapper), SymHash, CDHash melomac.com/posts/introduc…

Does anyone else just drink hot water, or is that weird?

Obligé d’aller voir @AkimOmiri en zone neutre tellement il balance 🤘 Merci pour ce super spectacle, très personnel, tjr là où on t’attend pas mais ça parle : bravo 🙏😂

This video sums up what a man should be 💯

Still searching for a full time job. Please spread the word

Well, I’m officially homeless. If anyone can help out with a job I’d be forever in your debt

Spent months helping App Stores take down fake apps. Now LinkedIn thinks I’m perfect for a “Store Assistant” job 👨‍💼 Guess it’s time to scan barcodes instead of scam apps. CFBR folks, hook me up with a role at your nearest Zepto/Blinkit dark store.

Just published an article on #Mach #IPC #security in #macOS: diving deep into how #XNU handles inter-process communication. Inside, you'll find detailed #RE techniques, #task port security analysis, and practical IPC #recon approaches. Enjoy! karol-mazurek.medium.com/mach-ipc-secur…

A side effect of 🍎's privacy mindset: in-memory payloads remain largely invisible/inaccessible to macOS security/3rd-party tools Apple nuked their reflective code loading APIs - but was that enough? 🫣 From #OBTS v7: "Restoring Reflective Code Loading" objective-see.org/blog/blog_0x7C…

Stoked that there will be an Apple-themed Capture the Flag (CTF) event at #OBTS v7.0 🤗🏴‍☠️ Interested in participating (or submitting a challenge)?Register here: docs.google.com/forms/d/e/1FAI… And a big mahalo to @gutterchurl & @iamevltwin for putting together the CTF again! 🙏🏽

Mediapart fait des révélations, il en fait des vannes. L’humoriste @WalyDIA débarque un lundi sur deux sur Mediapart pour une chronique politique enregistrée sur scène et en public. La chronique de Waly Dia 👉‍ l.mediapart.fr/Ztw

On dirait que la grille de la rentrée de @FranceInter n'a pas bien suivi la fin de la saison précédente 😅 cc @Charlineaparis

Our team previously discovered Godlua, the first botnet using DNS over HTTPS (DoH) to evade detection. Today, we reveal Zergeca, which uses Google and Cloudflare DoH services as well as Smux library for C2 communication. blog.xlab.qianxin.com/a-deep-dive-in…

提前下载使用 ChatGPT Mac 桌面客户端的办法（需要有ChatGPT付费账号，需要有网络技术基础）： 1. 下载地址：persistent.oaistatic.com/sidekick/publi… persistent.oaistatic.com/sidekick/publi… 2. 使用 Proxyman、Charles 或你喜欢的网络代理来进行以下操作： 以ProxyMan为例 1). 登录一次以触发 API 调用， 2). 对 ChatGPT 的 App 启用 SLL 代理（需要配置好 ProxyMan 证书） 3). 再登录一次以触发 API 调用， 4). 然后右键点击 ab.chatgpt.com/v1/initialize 选择本地映射，并将所有的 false 替换为 true。 再尝试一次，你就应该能顺利登录了。 但是只是老版本的语音对话功能，还没有今天演示的 gpt-4o 的语音对话功能

@patrickwardle @hexlogic ;-) youtube.com/watch?v=YIAnkr…

Stoked for the next (ad)venture: "DoubleYou" techcrunch.com/2024/04/25/ex-… Cofounded w/ long-time friend @hexlogic, we're empowering those building security tools for Apple devices 🍎🛡️ And by bootstrapping this venture, our core value of democratizing security remains our focus!

Greenhouse Effect xkcd.com/2889

Sorry no unboxing video, but here is the Apple Security Research Device with the swag that was included. Thank you @Apple!

New Phrack 71 Call For Papers just dropped. Check it out here: phrack.org