Jusepe

Learn how to write CodeQL queries to find security vulnerabilities in the 2nd part of CodeQL zero to hero series by @BlazingWindSec github.blog/2023-06-15-cod…

Stuck on a blind PHP file-read? @_remsio_ has just built on @hash_kitten's research using filter chains to trigger an OOM oracle and leak file contents. synacktiv.com/en/publication… twitter.com/PortSwiggerRes…

Super excited to release our car hacking research discussing vulnerabilities affecting hundreds of millions of vehicles, dozens of different car companies: samcurry.net/web-hackers-vs… Contributors: @_specters_ @bbuerhaus @xEHLE_ @iangcarroll, @sshell_ @infosec_au @NahamSec @rez0__

Series by Matt Mastracci on reverse engineering the bluetooth protocol used by a coffeemaker and implementing a control software using #Rust 1: grack.com/blog/2022/12/0… 2: grack.com/blog/2022/12/0… 3: grack.com/blog/2022/12/0… #rustlang #bluetooth #reverseengineering #infotech

A few years old but still a good series by @LimitedResults on ESP32 reverse engineering and exploitation crypto-core: limitedresults.com/2019/08/pwn-th… Secure Boot: limitedresults.com/2019/09/pwn-th… Boot Keys Extraction: limitedresults.com/2019/11/pwn-th… #esp #espressif #iot #infosec #cybersecurity

However, libc is in fact the one that is in charge of that task (#L163" target="_blank" rel="nofollow noopener">elixir.bootlin.com/glibc/latest/s…) . Created a simple PoC to test how .init section is only loaded when is linked with libc. gist.github.com/itasahobby/11e…

Interesting how Linux seems to delegate some of ELF specification compliance. According to the specs "When a program starts to run, the system executes the code in this section before calling the main program entry point" (refering to .init section).

How To Debug Distroless Docker Containers? iximiuz.com/en/posts/docke…

@roman_soft @flaggermeister 🙈🙈

This is insane. Good luck @flaggermeister 😈

We won DEADFACE CTF 2022 by @CHacktics ! So nice CTF, we loved the way that the story and the challenges are related. Its sucha a pleasure to participate on CTFs like this.

I've just finished the #w2k3builder project, so you can debug/modify/compile Windows Server 2003 source code. The script included makes all work for you. Thanks to: @0r1g3n3s @therealdreg @s0sinh4 @NTDEV_ for the awesome feedback. Magnet in my bio. vimeo.com/759543579

Another awesome #BGGP3 writeup (well, not exactly an entry for the context but close enough)! Tetsuji: Remote Code Execution on a GameBoy Colour 22 Years Later xcellerator.github.io/posts/tetsuji/

From 1day to 0day (CVE-2022-30024) on TP-Link TL-WR841N from our IOT team member @Nobey98 👍👍blog.viettelcybersecurity.com/1day-to-0day-o…

From investigating an OOB read bug report in the Quicksort implementation of the Hermes JS engine to building an RCE exploit engineering.fb.com/2022/07/20/sec…

The Android kernel mitigations obstacle race github.blog/2022-06-16-the…

Really well written post by @fransrosen on breaking OAuth implementations through postMessage gadgets that leak URLs. Awesome research, I loved following the journey. Totally worth the time it took you to do this. @avlidienbrunn is a great sounding board. labs.detectify.com/2022/07/06/acc…

This year's @synackredteam recognition program is over and I was inducted into the acropolis due to my performance. acropolis.synack.com/inductees/n0xi… I would also like to congratulate all the srt colleagues who earned their spot as they did an amazing job throughout the year.

Exploiting an Unbounded memcpy in Parallels Desktop A Pwn2Own 2021 Guest-to-Host Virtualization Escape blog.ret2.io/2022/05/19/pwn…

W25Q512JV flash high level driver for rpk2 by @therealdreg , also used it to create a CTF challenge for @uad360. May come handy when developing your own driver or just to grasp how flash devices work. github.com/itasahobby/win…

Reverse Engineering Flutter Apps : guardsquare.com/blog/current-s… credits @BorisBatteux