固定されたツイート
Bare metal Ghoul
14.1K posts
Bare metal Ghoul
@ghoullthings
Ghoul L Things • Self taught professional painter & Linux lover • Gadgets make me happy •🖤🐧🥧⌨️• Find me on Twitch • Brand Ambassador for @PerkinsFund
Holodeck 69 参加日 Temmuz 2020
929 フォロー中1K フォロワー
Bare metal Ghoul がリツイート
@N104AP Gosh I loved my iPhone 11 Pro so much, such an excellent little device.
English
Bare metal Ghoul がリツイート
Vanguard runs at boot because cheats run at boot.
Riot clones the PML4 table, inserts a shadow entry into a free slot, hooks SwapContext, and swaps CR3 per-thread at context switch time.
If it was spyware, researchers would have found it. They found this instead.
Reverse engineering is an art. When in doubt, reverse it.
#ReverseEngineering #Vanguard #InfoSec
Full RE breakdown by @Xyrem256: reversing.info/posts/guardedr…
cr3ghost@cr3ghost
People complain about kernel anti-cheat until they see what EAC actually does to stay ahead. CR3 encrypted inside EPROCESS. KdpTrap hooked to catch anything touching it during context switches. NtCreateUserProcess emulated so cheats grabbing DirectoryTableBase at process creation get a fake one. This is what fighting kernel-level cheats actually looks like. Full breakdown by 0xavx: web.archive.org/web/2025042514… #AntiCheat #GameSecurity
English
A railway network reminds me a lot of how data moves through a computer just like a train leaves evidence of its journey through signaling systems, station logs, and track records, data leaves traces behind as it moves through a computer in logs, memory, caches, temporary files, and filesystem metadata. Trains & railways are cool in my book.
English
Asking autistics, what are your thoughts on trains and railways?
English
@__past3l As someone who enjoys reading logs Im obsessed. I circled back to it in one of my books and finally made some alias of it for myself. There's so much i can do with it, Im building an alert tool incorporating the magic of bpftrace.
English
@ghoullthings The scary part is how quickly it turns kernel internals into something approachable. A few lines of bpftrace can answer questions that used to require custom tooling or hours of debugging.
English
@AutisticCoach_ This is how ive been teaching myself stuff, something about writing out things helps my brain remember.
English
I forgot the absolute joy that is sitting down, researching, and taking notes. No computer. No phone. No music. Just books, papers, pens, and my thoughts.
English
It's to combat the new aggressive "leved up" mosquitoes. Here in so cal the mosquitoes bite 24/7, instead of only at dawn/dusk and can lay eggs in a cap sized amount of water(anther new trait along w/ a few others). It's only the female mosquitoes that bite, so they would be releasing males who can't produce more mosquitoes. This new breed of mosquitoe are spreading diseases at an *insanely faster rate than ever before*.
English
Please do this literally everywhere. Please release several billion of these actually just everywhere. We covered the night sky with satellites, we taught sand to speak. Why are we still dealing with this scourge??
Bull Theory@BullTheoryio
BREAKING: Google is planning to release 32 million mosquitoes across Florida and California. The company has asked the EPA for permission to proceed, with the public given until June 5 to respond. The mosquitoes are infected with Wolbachia bacteria, which stops them from reproducing and slowly collapses the wild population from within. Google's previous Debug Project trial in California's Central Valley nearly eliminated mosquitoes from three test sites entirely. A separate trial in Singapore cut dengue cases by 70% within 12 months. Google has now released over 1 billion mosquitoes across four continents. This new proposal is the largest deployment in US history.
English
@TheEclecticGoat Buy jeans from kolhs and you can just swap them out for new ones
English
Remember this? From two days ago?
Last night I caught up in something in the barn and tore the entire side out of the pair of jeans I got for Xmas.
And then there was one… 😮💨
The Eclectic Goat@TheEclecticGoat
Poverty question otD: Yesterday I realized I’m down to 2 pairs of jeans. My husband also needs new boots & new socks desperately. Now I have to decide: - buy us clothes - pay the medical bills the money was saved for - wait until I make sure we have enough for the electric bill
English
You just won a 2-week, all-expenses-paid vacation to somewhere within my glorious crack. But there’s a catch: you have to stay within one region the whole time. What are you picking?
English
Bare metal Ghoul がリツイート
Bare metal Ghoul がリツイート
Man, thats big news! Qualcomm based DIY handhelds, soonTM.
English
Bare metal Ghoul がリツイート
I learned quite a bit from this actually.
I didn't know Steam was a Chromium app. Hence, you can kill Steam then relaunch it with the "-cef-enable-debugging" flag.
Once you'll launched Steam with this, you can inject Javascript into Steam using Chromium "webSocketDebuggingUrl" stuff.
This malware has a whole pseudo-framework of Javascript that can do:
- Alert Bell (?)
- Block pages
- "Help page" (?)
- Inventory manipulation
- Steam library manipulation
- Profile manipulation
- Steam redirections
Basically, this malware payload switches Steam into a Chromium debug state, then sends web debug requests (kind of like Chrome Dev Tools?) to manipulate the Steam pages. It injects Javascript.
The chat window that spawns is from a remote host they control. This is really cool.
Is it AI slop? Yes
Is this code EXTREMELY easy to reverse engineer? Yes
Did they unironically document their entire code base in Russian because it was (probably) written using Claude and the authors probably speak Russian? Yes
Is this extremely creative and cool? Yes
Special thanks to "pro" from 2c44. He handed me the payload and the decompiled Python. The malware .py was Base64 encoded ... so obtaining the original source was ridiculously easy.
goomba@GMBA
My friend bought a knife from float & this happened shortly after the trade lock ended. He was given a community that was quickly changed into this. When he reached out to support here is what they said (1/?)
English
Uhhhh, holy shit-"Side-channel attacks exploit measurable effects, e.g., electromagnetic radiation [27],
power consumption [54], execution time [35], acoustic signals [5], or network
metadata [7] to infer sensitive information indirectly."
International Cyber Digest@IntCyberDigest
‼️🚨 Malicious actors can now use your SSD's activity, just by getting you to open their website, to spy on which other sites you're browsing and which apps you're running. The attack, called FROST, is accurate: 88.95% on identifying websites, 95.83% on identifying applications. It works on macOS and Linux, across browsers, and runs entirely in JavaScript. The browser makers were told, and largely shrugged. Chromium says fingerprinting isn't a security bug. Apple called it out of scope. Mozilla acknowledged it and shipped nothing. Researchers at Graz University of Technology developed the attack. It abuses the Origin Private File System, a browser feature that lets sites store files on your disk without asking. The attack creates one huge file, then constantly times how fast it can read from it. When you open another tab or launch an app, that activity competes for the same SSD, and the tiny changes in read speed leak what you're doing. A trained neural network turns those timing patterns into guesses about which site or app it is.
English
Bare metal Ghoul がリツイート
She needs her own keyboard so maybe she won't lay on mine....
English
Bare metal Ghoul がリツイート
Apple Photos; Sharing full camera roll with Third Party Apps includes hidden photos even if the album is locked
English
The Odalisque, Dominique Louis Féréol Papety, 1839.
Berlin, Germany 🇩🇪 HT
@funbunxo I love my dj2 but the battery life and over heating are so awful
English
IoT Hacking - Analyzing Firmware with EMBA
Firmware is often treated as a black box, but you can see what is hidden inside with EMBA. If you know the firmware that your device is running you can give it a thorough check. It will give you the CVEs, interesting files, ShellCheck and other things..
If you are working in a sensitive environment, or protecting individuals who require a higher level of privacy and security, firmware should never be taken for granted
hackers-arise.com/iot-hacking-an…
@three_cube @_aircorridor #cybersecurity
English