leave

18 posts

leave

@_leave07

i do linux kernel and x86 stuff for fun CTF player at @TheRomanXpl0it

Katılım Temmuz 2025

69 Takip Edilen135 Takipçiler

leave retweetledi

kqx@kqx_io·1d

"Claude find a 0day, make no mistakes" CVE-2026-4447 chromereleases.googleblog.com/2026/03/stable…

English

555

77.5K

leave retweetledi

kqx@kqx_io·8 Mar

played DiceCTF quals and managed to blood the kernel pwn challenge and won the $150 bounty! check out the writeup: kqx.io/writeups/corne…

English

187

10.7K

leave retweetledi

OtterSec@osec_io·5 Mar

We recently achieved guest-to-host escape by exploiting a QEMU 0day. We’ll share details on a new technique leveraging the latest glibc allocator behavior and what we believe is a novel QEMU-specific heap spray/RIP-control primitive. Writeup coming next week.

English

190

1.5K

71K

leave retweetledi

kqx@kqx_io·2 Mar

Exploiting latest v8ctf instance with a 0day? ✅ Beating try-hards who stalk commits and exploit it as an N-day? ❌ In any case keep an eye out for the CVE release and stay tuned for a crazy post on kqx.io once the issue goes public

English

5.8K

leave retweetledi

Frank Wu@FrankOverF1ow·23 Şub

Last Saturday we spent ~6 hours in the kitchen and turned another chaotic 0-day into an edible KCTF flag. Now, it's time for lunch😋 #WhatForLunch

English

200

8.5K

leave retweetledi

kqx@kqx_io·20 Şub

A little bonus while we're working on other cool stuff :)

English

107

4.1K

leave retweetledi

kqx@kqx_io·13 Şub

How a single typo led to RCE in Firefox Can you spot the bug? Read now at: kqx.io/post/firefox0d…

English

637

147.3K

leave@_leave07·3 Şub

new exploit by Erge, stay tuned for this RCE in firefox!

kqx@kqx_io

The fox caught fire??? New blog post very soon at kqx.io 6b2f0f9f754952d956cab1a6922c920664d2636c192db4db614866345369a888

English

leave retweetledi

Gabriel Prostitis@___prosti·1 Şub

We decided to create a new account on X to consolidate all information in one place. Follow the account to be updated on the blog! @kqx_io

English

584

leave retweetledi

Gabriel Prostitis@___prosti·2 Oca

Let's begin the new year with some V8 exploitation! Learn how to turn a broken CanonicalEquality check into arbitrary Wasm type confusion in this ASIS CTF Finals writeup by @Erge! Read it here: kqx.io/writeups/singl…

English

192

8.7K

leave@_leave07·14 Ara

had fun playing Backdoor CTF 2025, ended up fifth with TRX and first-blooded a kernel pwn challenge. Have a look at the writeup: kqx.io/writeups/vibe_…

English

leave retweetledi

Gabriel Prostitis@___prosti·8 Ara

stop using ubuntu 24.04 to host your kernel pwn challenges lmao kqx.io/post/qemu-nday/

English

568

70K

leave@_leave07·28 Kas

If you're interested in exploiting JS engines check out what we faced in Romania at DefCamp finals 2025: kqx.io/writeups/inlin…

DefCamp@DefCampRO

It wouldn‘t really be #DefCamp without the #HackingVillage. A huge round of applause for everyone who joined our competitions! Whether you took home a prize or new insights, we hope you had an amazing time!

English

1.6K

leave retweetledi

Gabriel Prostitis@___prosti·17 Eki

Will you be able to exploit a 13-year-old vulnerability on QEMU'S TCG and become root? kqx.io/attachments/qe… Hit us up in dm if you make progress!

English

1.6K

leave@_leave07·7 Eyl

played ASIS CTF and first-blooded a really cool kernel pwn challenge written by @ptrYudai. You can find the writeup at kqx.io/writeups/filen…

English

558

leave@_leave07·1 Eyl

had a lot of fun playing corctf this weekend. Ended up at 4th place with TRX and also managed to first-blood the uarch challenge authored by FizzBuzz101. You can find the writeup at kqx.io/writeups/zener…

Crusaders of Rust@cor_ctf

corCTF 2025 has ended! Congrats to the top 5: 1. @FlatNetworkOrg 2. @r3kapig @ProjectSEKAIctf 3. The Amazing Digital Orange 4. @TheRomanXpl0it 5. STM Thank you to all of our players and sponsors! @osec_io, Research Innovations, @ret2systems, @trailofbits, @vector35, @googlecloud

English

leave retweetledi

Gabriel Prostitis@___prosti·22 Ağu

Going from IOPL escalation to root. Learn how here: kqx.io/post/fw_cfg/

English

590

leave@_leave07·22 Ağu

Reviving CVE-2023-0597 with QEMU. Find out more at kqx.io/post/sp0/

English

726

Keşfet

@kqx_io @erge @ptrYudai @elonmusk @BarackObama @taylorswift13 @cristiano @BillGates