beist

@OwariDa @HackingForSoju Yeah! I really miss those days too.

10 years ago, time flies! Competing in CodeGate with @HackingForSoju and partying with @beist was always lots of fun 😃

@tylerni7 Even as an individual researcher, I’m finding so many bugs using AI with just my part-time efforts. I don't know whether to be happy or worried—it’s actually making me skeptical. AI will only accelerate, and automated bug-hunting platforms are going to be insane.

Historically the vibe on a lot of automated vuln finding was that it wins on quantity not quality: it'll scale millions of low quality projects I don't think that's accurate in today's world. Our tools find lots of good bugs in hard targets today and honestly it's a bit scary

SPR was designed specifically to eliminate these attacks. Almost all other WiFi deployments carry inherent disconnects between L2/L3 that enable MITM attacks and packet injection, whether EAP-TLS or WPA3.

RIP @steaIth

Reminder we are looking for talented security researchers in all areas (iOS, Android, Browser, 0click, AI) 🚀🚀 DM me or shoot us an email at catalystsecurity.com 🦊

@alfiecg_dev I came across an article about your talk - dailysecu.com/news/articleVi… I wasn’t able to attend PoC this time, so I couldn’t listen to your talk. Will the slides be released soon? And is the content mostly the same as what you’ve written on your blog?

@5aelo I was hoping to see your presentation in person this time, but unfortunately I won’t be able to attend the PoC. I’ll look forward to your slides!

Slides coming soon :) Thanks for the great conference!

@seanhn I found chairs with wheels, though they don’t have armrests. There’s Solo Booth at Starbucks Circles Ginza. I haven’t visited it yet, but I’m planning to check it out soon. Seems nice! tokyoweekender.com/japan-life/sta…

@beist I failed at finding this for months so I hope you have better luck than me ;) The Share Lounge in the Marunouchi building (Tokyo station) has external monitors and you can swap between standing and sitting desks, but the chairs aren’t great =\

Anyone knows if there are any coworking spaces in Tokyo where the HotDesk (daily pass) seats come with chairs that have wheels and armrests? It would be even better if they also provide external monitors. At WeWork, I noticed HotDesk doesn’t have those kinds of chairs. Thank you!

I keep up with security news, and I feel the itch to dive back into full-time research—but for now, I’m just enjoying the present. Haven’t really touched computers much, but lately I’ve been hacking about a few hour a week. Using AI to hunt for crashes is still a lot of fun.

Can’t believe it’s already been 6 months since I retired. Life after retirement hasn’t been about being “productive,” but about finally using my time however I want. Starting next month I’ll be in Japan, then heading over to Europe and Bangkok, I guess.

🔺iPhone models announced today include Memory Integrity Enforcement, the culmination of an unprecedented design and engineering effort that we believe represents the most significant upgrade to memory safety in the history of consumer operating systems. security.apple.com/blog/memory-in…

@tylerni7 @theori_io You guys really showed outstanding performances!

For those not keeping track, this past weekend at DEF CON @theori_io got: * Yet another first place win at DEF CON CTF (9th win for many of us) * A Pwnie for best priv esc bug * 3rd place at DARPA's AIxCC So proud to work at such an awesome company and security powerhouse 💪🏻👨🏻‍💻

These days, when I see the results of bug hunting using AI, I truly feel glad that I retired early. Theori at aixcc: theori.io/blog/exploring… Google big sleep: issuetracker.google.com/issues?q=compo… Xbow: xbow.com/blog/top-1-how…

@ifsecure Good news, but if there had been security engineer positions at Google Korea as well, there would have been many applicants!

As a New Year resolution, consider applying to Project Zero :)

The Parallels VM escape bug reminds me of a bug I reported to VMware about two years ago. I was waiting until a patch was released before posting, but I ended up forgetting. Just an LPE bug on the host side, feel free to check it out if you're curious. (A colleague of mine forgot his MacBook password, so I discovered the bug in order to read the admin hash and crack it. He made a 'guest' account luckily before.) The diagram might look ugly, tho. PoC is available if you want, but it's a simple logic bug, so easy to exploit.

@cocaas Yeah, AI is stealing my money.. Cursor, ChatGPT, Claude.

@beist Are you using the paid version of Cursor?

For a new setup (Mac mini and LG Dual-up display), I spent some hours and it’s pretty nice! Cursor so much helped me out crash prl_vm_app on the host side (Parallels VM escape). Have not finished the exploit yet but it’s likely exploitable. (Sorry, the cables are still messy.)