Max

10.5K posts

Max

@_mxms

rpisec

Cascadia Katılım Aralık 2010

406 Takip Edilen2.4K Takipçiler

Max retweetledi

Justin Campbell@metr0·13 May

Fortunately this http.sys bug was an internal find by our team. This one thanks to @_mxms, @fzzyhd1 and everyone who contributes to our tooling and automation.

TrendAI Zero Day Initiative@thezdi

Happy Patch Tuesday! #Adobe and #Microsoft have released their regularly scheduled updates, and @dustin_childs has all the details of the bugs squashed this month - including a wormable bug in http.sys. bit.ly/33xsfxl

English

Max@_mxms·5 Şub

@tekknolagi A child can attach to its parent if the parent calls ptrace(PTRACE_TRACEME, ...) or you modify yama_scope; whether or not gdb will be able to use the tty properly, I don’t know :p

English

max.rss@tekknolagi·4 Şub

Yeah this doesn't make any sense, thinking about it. How could a child gdb its parent process in the same tty? I want this kind of thing to exist, though... Wonder if I could somehow get the gdb process to own its parent

English

max.rss@tekknolagi·4 Şub

I want to write a function in C that attaches GDB to the current process. I wrote something stupid using getpid() and system(), but when GDB eventually attaches it's stuck forever in waitpid(). I haven't gone too far into OS docs yet but has anyone else built something like this?

English

Max retweetledi

yrp@yrp604·26 Eyl

Do you want to gamble on fat bears for charity? #FatBear2020 is here. Get your brackets in before the 30th! Details here: gist.github.com/yrp604/088bd20…

English

Max retweetledi

Winnona 💾@__winn·7 Ağu

These, combined with recent @WIRED reporting on Chinese espionage campaign Operation Skeleton Key targeting the Taiwan Semiconductor Industry (wired.com/story/chinese-…), suggests possibility of an explosion of new homegrown semiconductor companies in the mainland.

English

Max@_mxms·6 Mar

@SiouxDenim 🙉

QME

John "Penjdoe" Doe@SiouxDenim·6 Mar

Sup @_mxms

Max@_mxms·3 Eki

There’s also a format string bug going the opposite direction (when your phones name is %p%p%p...) twitter.com/fransrosen/sta…

Frans Rosén@fransrosen

If you have an AppleTV named as an XSS-payload it will trigger when AirPlay is used in Safari on iOS. A pretty far-fetched UXSS I would say.

English

305

Max retweetledi

yrp@yrp604·2 Eki

The second annual infosec fat bear bracket is here. Let’s gamble on some fat bears for charity. Brackets due ASAP. dpaste.de/OZ1U

English

Max@_mxms·5 Eyl

@0xJeremy No CFG :(

Español

Jeremy Blackthorne@0xJeremy·5 Eyl

Text-based IDA Pro. It all works, disassembler, decompiler, remote debugging... My tab and alt keys are getting a workout.

English

Max retweetledi

Justin Campbell@metr0·13 Ağu

It's not obvious from the advisory, but the same code runs in RDP client. The issues have been patched in both. This would have allowed a malicious server to compromise a client without any alerting behavior, or a MitM attack with a warning confirmation.

English

Max retweetledi

Justin Campbell@metr0·13 Ağu

August Patch Tuesday includes fixes for our internal finds in RDP, including RCE and remote info disclosure, and affecting Win 10 latest. The team successfully built a full exploit chain using some of these, so it's likely someone else will as well. Patch and enable NLA.

Microsoft Security Response Center@msftsecresponse

August 2019 Security Update includes fixes for wormable RCE vulnerabilities in Remote Desktop Services (RDS), affecting all in-support versions of Windows. These should be patched quickly. For more information, see msrc-blog.microsoft.com/2019/08/13/pat…

English

Max@_mxms·12 Ağu

Did anyone find / exploit the serialization bugs in TelOoOgram during DEF CON CTF?

English

Max retweetledi

Justin Campbell@metr0·14 Şub

We've built tools for fuzzing based on emulation of a process snapshot captured via minidump. We're considering open sourcing the tool, and I'm curious about interest level from the rest of the world. (1/3)

English

167

Max@_mxms·14 Ara

@RolfRolles @aaronportnoy Last year RPISEC was at the RPI club fair, and a person of color came to our table and saw the book, and asked the same thing. I’m incredibly happy they asked instead of assuming

English

Aaron Portnoy@aaronportnoy·13 Ara

Awkward: having a guest peruse your collection of books only to ask “Why do you have a book called People of Color GTFO”? ...and having to explain PoC means proof of concept in our field

English

Max retweetledi

Real World CTF@RealWorldCTF·1 Ara

#RealWorldCTF2018 RPISEC has successfully pwned the Safari browser and spawned a calculator on the victim host at their first attampt during the demostration!

English

Max retweetledi

Brandon Falk@gamozolabs·15 Eki

Vectorized Emulation: Hardware accelerated taint tracking at 2 trillion instructions per second gamozolabs.github.io/fuzzing/2018/1…

English

138

228

Max retweetledi

Gabby Roncone 🇺🇦 🇵🇸@gabby_roncone·6 Eki

After Trump was elected, I felt unsafe. I thought that electing a man as president who has assaulted women would normalize that behavior, make assault seem inconsequential to a perpetrator. Right now, I feel worse. It’s normalized, all right.

English

Max@_mxms·18 Eyl

So what’re we supposed to be doing about the ongoing calls from numbers in our area code? It’s old...

English

Max retweetledi

RPISEC@RPISEC·17 Eyl

Came in 1st in CSAW 2018 Quals! Kudos to all who played, it was a tough competition this year! See y'all at finals!

CSAW Cybersecurity Games and Conference@CSAW_NYUTandon

48-hour Quals is officially done. Nicely done, @osirislab! #CTF scoreboard is frozen. Thank you so much to all the teams who participated this weekend. Check out the scores here: ctf.csaw.io/scoreboard. Official announcement of Finalists will be posted in early October.

English

Max@_mxms·16 Eyl

@doctorvink @piazzt’s curry :>

English

Keşfet

@fzzyhd1 @tekknolagi @WIRED @SiouxDenim @0xJeremy @RolfRolles @aaronportnoy @elonmusk