434B

For the time being here is the 4th and final part of my little D-Link reversing blog: 0x00sec.org/t/breaking-the…

Did a massive overhaul of this last month. More papers, more metrics and a neat graph visualization :)!

I just received 5 coffees from e4cu on @buymeacoffee! buymeacoffee.com/0xricksanchez/…

Random weekend project of the month: Take an old Perl script and claim you can do better than that if you write it in Rust github.com/0xricksanchez/…

Have you found some vulns, bypassed detection, or done some cool research the past year you haven't already blogged? Submit to @phrack! Deadline is June 15 for the 40th Anniversary Edition, we're printing 1000s of copies worldwide free at cons & online! Be a part of history!

Recently learned about vulnerable.codes, which teaches you code auditing. Nice to see more educational platforms popping up. Rn, it's heavily supported with content from @XenoKovah and @OpenSecTraining, but if it keeps expanding even beyond C/C++ it could be very nice :)!

Just hacked some AI wizardry to tame my paper collection. Check it out: aischolar.0x434b.dev (based on github.com/0xricksanchez/…). Ideas welcome!

Small QoL feature release to my Shellcoder #BinaryNinja plugin. Now every time you run it the architecture is automatically set based on the currently selected binary/database github.com/0xricksanchez/…

github.com/0xricksanchez/… just got more rusty, stable, (hopefully) easier to maintain and contribute to. Also, we have a bunch of new features like deterministic generation and fuzzing modes :)!

Having some fun with an old CVE to explore ARM TrustZone more. Having no proper debuggability can really be a nightmare, especially when the MMU/caching is involved. Cool research by @raelizecom

@0xricksanchez "Handcraft"? I appreciate the message and can relate, but this isn't handcrafted.

Remember kids, when you're stuck on the technical part of your exploit, the only way to continue is to handcraft sick ASCII art for the exploit in case you ever manage to finish it!

*BinaryNinja intensifies*

@gr4yf0x Hahaha fair enough. No need to rush it. I can also take a look at it later

@0xricksanchez Sounds like a good idea. I will try to merge my changes back to the main project now that I have an idea how the code works. When I started, I just ripped everything out 😂

I think LIKE-DGB is a great project to ease Linux kernel debugging but I wanted to get rid of docker quickly. And I wanted to use an external build server. So I created a fork last week. Here you go :) github.com/raymontag/like…

@gr4yf0x That said i also have a almost ready replacement for the kernel DL/unpacker somewhere sitting around. Never gotten around to add it… yet

@gr4yf0x Happy to integrate your changes and make it so that we can have a “—docker flag” for peepz that don’t have stuff locally available :)

Now also available on the official plugin manager from within #BinaryNinja! Thanks @psifertex :)

Fun little weekend project to implement something like @JonathanSalwan's ShellStorm assembler/disassembler in pure #Binaryninja. Repo: github.com/0xricksanchez/…

#tools #Fuzzing AFL_Runner - tool to streamline running efficient multi-core AFLPlusPlus campaigns github.com/0xricksanchez/…

After how many side-projects do you get side-tracked back to your main project? Asking for a friend???