Sam Thomas

[ Honored | Thrilled | Terrified ] to be presenting an interesting PHP exploitation technique at @BlackHatEvents #BHUSA this year #its-a-php-unserialization-vulnerability-jim-but-not-as-we-know-it-11078" target="_blank" rel="nofollow noopener">blackhat.com/us-18/briefing…

@matthias_kaiser @SinSinology @chudyPB @steventseeley This, finally got to meet two of my heroes, thank you both for being so awesome!

@SinSinology @_s_n_t @chudyPB @steventseeley My pleasure to finally meet you guys in person 🙏 What an amazing moment 👍Hope to see you guys here again next year!

Continuing the series of "chase my idols for a selfie", look who's here! The legends Matthias (@matthias_kaiser) and Sam (@_s_n_t), but we are missing @chudyPB and @steventseeley to have a full chain,we miss you guys!

[ZDI-24-088|CVE-2023-22819] (Pwn2Own) Western Digital MyCloud PR4100 RESTSDK Uncontrolled Resource Consumption Denial-of-Service Vulnerability (CVSS 5.3; Credit: @_s_n_t of @pentestltd) zerodayinitiative.com/advisories/ZDI…

[ZDI-24-087|CVE-2023-22817] (Pwn2Own) Western Digital MyCloud PR4100 RESTSDK Server-Side Request Forgery Vulnerability (CVSS 6.3; Credit: @_s_n_t of @pentestltd) zerodayinitiative.com/advisories/ZDI…

New @Forbes: And the pwn2own zero-day exploit count is in: Samsung Galaxy S23 - 4 / Xiaomi 13 Pro - 2 / iPhone 14 and Pixel 7 - a big fat zero. #infosec #pwn2own #samsung #hackers forbes.com/sites/daveywin… Samsung Galaxy S23 Hacked By Million Dollar Zero-Day Attackers

💥SUCCESS!!! 🎉 @_s_n_t successfully compromises the Samsung Galaxy S23 at #Pwn2Own Toronto 2023!! Well done Sam, amazing work 👏👏👏

Success! Pentest Limited was able to execute an Improper Input Validation against the Samsung Galaxy S23. They earn $50,000 and 5 Master of Pwn points. #Pwn2Own

Success! Pentest Limited was able to execute their 2-bug chain against the My Cloud Pro Series PR4100 using a DoS and SSRF. They earn $40,000 and 4 Master of Pwn points. #Pwn2Own

[ZDI-23-852|CVE-2022-29842] (Pwn2Own) Western Digital MyCloud PR4100 account_mgr Command Injection Remote Code Execution Vulnerability (CVSS 7.5; Credit: Sam Thomas (@_s_n_t) of Pentest Ltd (@pentestltd)) zerodayinitiative.com/advisories/ZDI…

[ZDI-23-851|CVE-2022-36326] (Pwn2Own) Western Digital MyCloud PR4100 RESTSDK Uncontrolled Resource Consumption Denial-of-Service Vulnerability (CVSS 6.5; Credit: Sam Thomas (@_s_n_t) of Pentest Ltd (@pentestltd)) zerodayinitiative.com/advisories/ZDI…

[ZDI-23-850|CVE-2022-29840] (Pwn2Own) Western Digital MyCloud PR4100 RESTSDK Server-Side Request Forgery Vulnerability (CVSS 7.3; Credit: Sam Thomas (@_s_n_t) of Pentest Ltd (@pentestltd)) zerodayinitiative.com/advisories/ZDI…

[ZDI-23-774|CVE-2023-21516] (Pwn2Own) Samsung Galaxy S22 McsWebViewActivity Permissive List of Allowed Inputs Remote Code Execution Vulnerability (CVSS 8.8; Credit: Sam Thomas (@_s_n_t) of Pentest Ltd (@pentestltd)) zerodayinitiative.com/advisories/ZDI…

Our own @kreepsec has been exploring Remote Procedure Call (RPC) vulnerabilities. He shares his insights on setting up a research environment and starting the bug-hunting journey. buff.ly/3M6hLvV

Highlights from Day 3 of #Pwn2Own Toronto: Pentest Limited targeting the Samsung Galaxy S22

He’s only gone and done it again!!! @_s_n_t has successfully compromised the Samsung Galaxy S22, earning 5 MoP points and $25k. That takes his overall #Pwn2Own Toronto 2022 total to 9 MoP points and $45k in prize money! Huge congrats Sam, proud of you! 🎉🥳🎉 #P2OToronto

And the last Samsung Galaxy S22 attempt for the competition was a success for the team @ #P2OToronto ! #Pwn2Own

The result is in, NO DUPLICATIONS! 🎉🥳🎉🥳🎉 Well done @_s_n_t, 4 MoP points and $20k for successfully pwning the WD My Cloud Pro Series PR4100! On to the Samsung Galaxy S22 at 10.30pm (GMT) #Pwn2Own #P20Toronto

Our #Pwn2Own attempt on the WD My Cloud Pro Series PR4100 (NAS category) went through 1st time🎉🥳🎉. Now the wait - please don't be a duplication, please don't be a duplication.

3 unique bugs net Pentest Limited $20K and 4 MoP points @ #P2OToronto. #Pwn2Own

@pentestltd err... not 'til tomorrow...