Danilo Erazo

Check my talk at @REverseConf 2026. Is a mix of emotions and technical stufforlando youtu.be/4URYm8vULkY?is…

@lina/116198976928184530" target="_blank" rel="nofollow noopener">vt.social/@lina/11619897… this sums up the CTF vs LLM stuff nicely. Good job @Lina_Hoshino ! the competitive metric (ctftime) is dead/a gimmick at this point... .. as a retired and washed up competitive ctf player with user id #18 on ctftime it is kinda saddening to see it implode like this. ;-( I simply don't see any workable solution to bring back fair competitive CTF (with varying difficulty). you could argue "well anyone can use the LLM's, that levels the playing field". by definition that means 1) you need anti-LLM (difficult) tasks, killing the element of having varying difficulty ("something fun for everyone"). 2) teams/entities with cashflow could buy more clankers/compute/access to more expensive models, etc. 3) you're really gonna sit there and watch codex dream up "the house of force" instead of revisiting github dot com slash shellphish slash how2heap all by yourself and yes I'm aware of all the various "underhanded" CTF tactics teams have employed over the years (where is that picture of the iceberg?); but forcing everyone who wants to compete to start using the ridiculous cheatcode doesn't feel like it addresses/fixes anything.. back in the days when we had to address fairness adjustment in the scoring algo of individual CTFs or ctftime as a whole we'd have a civil discussion (that would sometimes quickly erupt into a full on flamewar) on IRC with the involved parties. I'm afraid the solution is not so simple this time around :) yo @kyprizel @leetmore @snkdna @hellman1908 I'm curious to hear how you people feel/think about this situation

⏰ Tomorrow at RE//verse 2026 Our Security Researcher @revers3vrything will present his latest research on reverse engineering a proprietary RTOS used in IVI systems of some KIA models. 📍 Orlando, USA 🗓 10 AM, March 7 Don’t miss it. 🔗reverse-2026.sessionize.com/session/1077854 #CyberResearch

Our Security Researcher, Danilo Erazo @revers3vrything speaking at RE//verse 2026 🇺🇸 🗓 March 7, 2026 📍 Orlando, FL Hands-on reverse engineering & advanced security research insights. Don’t miss it 👇 reverse-2026.sessionize.com/session/1077854 #REverse2026 #ReverseEngineering

Confirmed! Mia Miku Deutsch (@newbe3e) exploited a stack-based buffer overflow against the Alpine iLX‑F511, earning $10,000 USD and 2 Master of Pwn points. #Pwn2Own #P2OAuto

Be in the room for Hacking the Xbox One at RE//verse 2026! The console built on the word “unhackable” finally gets a full hardware attack story from bootrom to broken chain of trust. This March in Orlando, do not miss it. Get your tickets now: shop.binary.ninja/collections/re…

This "vulnerability" in FFmpeg demonstrates clearly the alarmist nature of @MITREcorp @MITREattack A pixel could theoretically be the wrong colour because of an integer overflow. As this is theoretically possible over a network, it's "High Severity" ubuntu.com/security/CVE-2…

New JS engine, old JS vulns :) Found a bug and wrote an exploit in 8 hours 645da364a8089c43953b345d3004fc76148cb2f136f74e211429ddc8452846d1 exp-shell.js ./mqjs ./exp-shell.js LEAKED: 77b6 1c5ff205 LIBC BASE: 77b6 1d600000 STACK PTR: 7ffd 143e1bb8 WROTE ROP CHAIN $ whoami nyan

You won't want to miss Danilo Erazo's (@revers3vrything) talk! A previously unknown automotive RTOS reversed end to end and a secure boot flaw that lets attackers take over the entire head unit. New bugs and new attack paths shown for the first time at RE//verse. Get your ticket now: shop.binary.ninja/collections/re…

OJO que no te puedes perder este excelente episodio en el espacio de La Jaula del N00b compartiendo experiencias de Hardware y Car Hacking junto a Danilo Erazo @revers3vrything 🥷🚗💻 @debugsec1337 @HackersOIHEC @poolfme #hacking #hackers #podcast #infosec #CyberSecurity

🔥Grabando podcast La Jaula del N00b con @revers3vrything hablando de hardware hacking y Car hacking 😎🔥🇪🇨🇲🇽🎙️@AxelMetalCyber @poolfme @debugsec1337 #hacking #infosec #hackers #podcast #CyberSecurity

Vulnerable key fobs for Kia in Ecuador: hacking RF signals from third-party alarm systems. 🚗၊၊||၊🔑📻😈 More details on: LinkedIn: linkedin.com/posts/dlaskov_… Substack: it4sec.substack.com/p/vulnerable-k…

Ten cuidado con celulares Samsung.

I am very happy to share that I'm moved to Budapest Hungary to start as a Security Researcher in @PCACyberSec #carhacking #IoTHacking #research 🚘💻🏴‍☠️🔥

I am part of @defcon 🚘🏴‍☠️🔥 Check the @NetworkChuck video about DEFCON Villages: youtu.be/qFsj6KL8_nU?si… #carhackingvillage #defcon33

Don't expect us to recap @revers3vrything's #TheSAS2025 talk in deep detail. He's an expert rapper (literally), and he uses his skills to the fullest extent to spell out all the chip names in a KIA head unit right now 🕶

Today is my talk #TheSAS2025 let's discover this KIA Zero Day

First talk in #TheSAS2025 talk, Zero Day in Chrome: CVE-2025-2783

#TheSAS2025 Conference Day 1

🚗 Remember the Kia challenge? Apparently it wasn't the last vulnerability in Kia head units. Meet Danilo Erazo (@revers3vrything) - independent automotive security researcher, rapper (!), DEF CON speaker, and Car Hacking Villa organizer at Ekoparty. His #TheSAS2025 talk title hits different: "Kia zero day: First automotive QR phishing attack" We're already drafting our question list - and there'll be plenty of networking opportunities to get all the juicy details. 🎯 Ready to join the ride? kas.pr/6rx9