azox

Prizes for Ph0wn CTF, sponsored by @hardwear_io Huge thanks for supporting us each year, since 2017! We also have another prize sponsor, but for secrecy, we can't reveal their name and prize before the CTF ;-) Register on ph0wn.org - we're waiting for you!

HydraFW v0.12 Released ! New features: - SPI 3-wire (BIDIR) mode support - Read with timeout for all protocols - Timed read for smartcards - CI/CD with GitHub Actions Thanks to all contributors ! github.com/hydrabus/hydra…

We have sent out all invites for this year. Make sure to check your inbox, as well as your spam folder :) some "+1" are still to be contacted.

🚀 THE COUNTDOWN IS OVER! 🚀 hydrasdr.com is NOW LIVE with MAJOR open-source release ! ✅Complete host tools / API and firmware ✅SDR++ / SatDump (until official support is available) ✅SoapyHydraSDR, GNU Radio (gr-osmosdr) ✅urh, luaradio support ✅Full software ecosystem coverage 📂GitHub: github.com/hydrasdr 🛒Buy HydraSDR RFOne @digikey: digikey.com/en/products/de… Professional SDR meets open source ! 🇺🇸🇫🇷 #HydraSDR #SDR #OpenSource #SDRPlusPlus #GNURadio #SatDump

For a deeper dive into BLS signatures, building aggregation, and multi-signatures, check out our recently published blog post below: zellic.io/blog/bls-signa…

The SDR community is about to get a new tool. Professional specs. Accessible pricing. Open source code. All details in less than 20 days. Follow the countdown: hydrasdr.com Stay Tuned

My friend @manaaaaaaaf and I have created an AI hacker! 👨‍💻 It can find 0-days in web applications with 0% false positives, and it also works on CTF challenges! What you see ⬇️ is @haicker_app solving a web challenge from UMassCTF 2025 (only 45/557 teams were able to solve it!)

Just published the slides from @_mccaulay and my talk at @1ns0mn1h4ck on Pioneer IVI hacking. We got a pretty interesting spyware demo too where we extract a bunch of data from the compromised IVI! nccgroup.com/uk/research-bl… vimeo.com/1062015713

I've been diving into electromagnetic (EM) side-channel attacks with Correlation Power Analysis (CPA) these past few weeks and just published a blog article about my journey: collshade.fr/articles/cpa/c…

@fjullien06 @0x01K @Baldanos EM always requires some alignements ;) glad you could make some progress !

@0x01K @Baldanos It's a uC and I'm using an EM probe. My traces were very unaligned. I just controlled the traces on a part where it looked fine.

Hello AES!

@picolecroco @hydrabus Personnellement je le préfère a la plancha !

Oh la qu'est ce qu'on me fait là ? Maltraitance de crocodile ? #Ph0wn24

🔥Back from #r2con2024 🔥 Shoutout to the organizers and @trufae for this wonderful event and for the goodies ! Also a special thanks to @travisgoodspeed for the workshop and the book ! It was a lot of fun !

Decompiling with #decai provides a really nice output, as you can see in the example below. But even with more complex binaries the results are surprising. #r2con2024

Asymetric crypto secrets uncovered with the latest commands included in #radare2 by @ipolit@mastodon.social and @_Az0x_ #r2con2024

And now @ipolit@mastodon.social and @_Az0x_ will show how to use #radare2 searching crypto-related stuff #r2con2024

Meanwhile, at @travisgoodspeed@mastodon.social track, people are concentrated marking bits #r2con2024

Thanks for the shoutouts Sylvain @ #blackalps24 but where are the pliers?!? see you at beerontuesday.ch @BlackAlpsConf

Until October 30, Okta generated "the cache key" by using bcrypt to "hash a combined string of userId + username + password", which allowed full password auth bypass for usernames of 52+ bytes and apparently required only partial knowledge of the password for other long usernames

🔥 One week for r2con! 🔥 Checkout the schedule and meet us in Barcelona if you can make it! radare.org/con/2024 #r2con #radare2