Qinrun Dai

@hackyzh no, still Samsung

@2st___ chrome?

Another RCE is born. Finding a useful infoleak is 10x harder than the OOB write. Hoping to catch this year's BlackHat :)

@Y1nKoc too strong

😬😬😬

Has been playing Earth Online for 24 years, looking forward to more stickers on my laptop.

@zcyskyqaqqwq strong

Finally, my first year's work got officially accpeted on POPL 2025. This may be the only good news to me these days. Hope I can move on to produce more interesting work in the future.

I’m honored to be here at #BHUSA 2024 to deliver my talks about 1 click RCE on smart phones and machine learning into kernel on-the-fly quarantine!

What's the feeling of rewriting code based on 4-years-ago toolchain version and 10-years-ago historical projects?

Boulder faculty and students are pround of being part of the 42-b3yond-6ug team. Now, take a shot at the meaning of the team name.

Do you use a virtual machine to browse dangerous links safely? If you use the Chrome browser inside that virtual machine, is it secure enough? As you might have guessed, the answer is not so much. We chained six unique CVEs from 2023 listed below. • Chrome Renderer RCE : CVE-2023-3079 • Chrome Sandbox Escape : CVE-2023-21674 • LPE in guest OS : CVE-2023-29360 • VMware Info Leak : CVE-2023-34044 • VMware Escape : CVE-2023-20869 • LPE in host OS : CVE-2023-36802

@NareshXett47854 we can talk about them

@Second2st are you play ctf i have some challanges

Recently it occurred to me the fact that when I lose my status as a student, I will no longer be a "maybe-good" CTF player or a security researcher. I will still need to fill my knowledge with 7x10 hours of study and enthusiasm like I did during my sophomore year.

openai provides me with good example code snippets to learn

At first I was used to read LLVM source code a lot to find what methods, class...that I should use . Now with openai and copilot, I can focus on the algorithm design, instead of "wasting" time to read the source. AI is indeed a good helper to quickly learn prior knowledge.

Uploaded all my Offensive Security & Reverse Engineering (OSRE) course labs (docx) to my repo found below. Most of them have very detailed instructions and should be great to get you started in Software Exploitation. 1/n #Offsec #SoftwareExploitation #RE exploitation.ashemery.com

How to Reverse and Exploit iOS for BEGINNERS😈 👇My 3 part series👇 Part 1: How to Reverse & Patch iOS Apps bit.ly/3inJgop Part 2: Exploiting iOS binaries: ARM64 ROP Chains bit.ly/3BgvLxt Part 3: Heap Overflows on ARM64: Spraying, UAF bit.ly/3gGI7rx

Finally, my TOEFL score is out !!! No longer tormented by exam cancellations and worrying about hold status !!!

Although some public researches on Windows Defender are very enlightening, there is still little information on mpengine's internal on the Internet. Hope to find some people to research together.

Windows pwn is always kind of complex :)

Check out our new blog post about analyzing the #RPC communication between #Windows #container to the host. 😃 cyberark.com/resources/thre… We also released a new tool named #RPCMon to show RPC calls with functions names: github.com/cyberark/RPCMon (1/2) #malware #redteam #Pentesting

won second place in DEFCON30 with Katzebin made some small contributions Looking forward to DEFCON31!