H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝

209 posts

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ banner

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝

@hd_421

Singapore Katılım Temmuz 2016

647 Takip Edilen372 Takipçiler

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Pantelis@PantelisStoufis·25 Nis

I am currently seeking an exceptional Security Incident Response Engineer to join our esteemed global security incident response team. This rare opportunity doesn't come around often. Join us in this exciting role! #infosec #hiring #cyberroles jobs.apple.com/en-gb/details/…

English

146

13.3K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Ivan Krstić@radian·24 Eki

🔺New on Apple Security Research blog: a deeply comprehensive Private Cloud Compute security guide, and an unprecedented Virtual Research Environment allowing you to run production PCC software right on your Mac with Apple silicon. And up to a $1M bounty! security.apple.com/blog/pcc-secur…

English

165

584

100K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Ivan Krstić@radian·11 Haz

🔺New on the Apple Security Research blog: introducing Private Cloud Compute! We believe this is the most advanced security architecture ever deployed for cloud AI compute at scale. security.apple.com/blog/private-c…

English

143

408

96K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Ivan Krstić@radian·8 May

🔺Now live: the May 2024 update to the Apple Platform Security Guide! support.apple.com/guide/security…

English

136

21.4K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Ivan Krstić@radian·21 Şub

🔺New on the Apple Security Research blog: introducing PQ3, a groundbreaking post-quantum cryptographic protocol for iMessage. To our knowledge, PQ3 has the strongest security properties of any at-scale messaging protocol in the world. security.apple.com/blog/imessage-…

English

123

360

60.6K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Ivan Krstić@radian·27 Eki

🔺New on the Apple Security Research blog: a brief technical overview of iMessage Contact Key Verification! security.apple.com/blog/imessage-…

English

254

59.6K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Ivan Krstić@radian·23 May

🔺New on the Apple Security Research blog: we pit our hardened kalloc_type XNU allocator against SockPuppet, a powerful vulnerability from the past: security.apple.com/blog/what-if-w…

English

237

82K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Aleksei Tiurin@antyurin·25 Oca

I've added a bunch of security checks for SAML. The bottom part of the article will be useful for pentesters too invicti.com/blog/web-secur…

English

5.5K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Steph@w34kp455·16 Ara

My video presentation of AppsecStudy from #blackhateurope youtu.be/n0gOjmMiuKM via @YouTube Subscribe, like, and share 😀 #BlackHat

YouTube

English

356

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Steph@w34kp455·6 Ara

I hoped to attend #BlackHatEurope @BlackHatEvents with two tools, but because my visa is not ready, I will miss it. It's very upsetting, but sometimes it happens. Let me write a few words about the tools and share the links in this thread. #ivan-iushkevich-32366" target="_blank" rel="nofollow noopener">blackhat.com/eu-22/arsenal/… #BlackHat

English

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝@hd_421·6 Ara

Incredible work!

Sam Curry@samwcyo

More car hacking! Earlier this year, we were able to remotely unlock, start, locate, flash, and honk any remotely connected Honda, Nissan, Infiniti, and Acura vehicles, completely unauthorized, knowing only the VIN number of the car. Here's how we found it, and how it works:

English

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Brandon Azad@_bazad·27 Eki

I’m really excited for us to shed light on some really cool work we’ve been doing to harden the XNU allocator! This has been a huge effort by so many people, and I’m very proud of the direction: security.apple.com/blog/towards-t…

English

394

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Jack Halon@jack_halon·23 Eki

Today I am finally releasing a new 3-part browser exploitation series on Chrome! This was written to help beginners break into the browser exploitation field. Part 1 covers V8 internals such as objects, properties, and memory optimizations. Enjoy! jhalon.github.io/chrome-browser…

English

471

1.5K

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

FrenchYeti@FrenchYeti·17 Eki

#DexcaliburPro on steroid💊 Just added device-oriented features to inspect / generate hooks to spoof data read from / write to device 😍 by any instrumented app on this device (1/n) @_bhamza @U039b @Farenain @trufae @EmericNasi @_reversense_ #hacking #android #frida #security

English

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝@hd_421·6 Ağu

Smooth and simple 👍

Sergey Toshin@_bagipro

Bypassing ContentProvider.openFile() internal security checks in Android [1/3] I've discovered an interesting trick that you may use to access private information using a content provider

English

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Mobile Security@mobilesecurity_·9 Haz

DroidGuard: A Deep Dive into SafetyNet 🔥 #MobileSecurity #AndroidSecurity [SLIDES+PAPER+VIDEO] by @rh0main romainthomas.fr/publication/22…

English

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝@hd_421·3 Haz

Great and technically deep WP/talk on DroidGuard internals, totally recommended!

Romain THOMAS@rh0main

The slides and the whitepaper about SafetyNet/DroidGuard are available here: romainthomas.fr/publication/22…

English

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝ retweetledi

Juan Tapiador@0xjet·20 May

This is a thread on the legality of reverse engineering (RE) software, inspired by @FrenchYeti's recent decision of not streaming a talk due to legal pressures. 1/

English

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝@hd_421·28 Şub

Stop war! 🙏

LiveOverflow 🔴@LiveOverflow

All I can think of are the Ukrainian and Russian CTF players I have met, whose writeups I have read, whose talks I have watched, who collaborated with me on videos. I always felt that hacking unites the world. It makes me cry, I'm scared and cope by distracting myself. 😢

English

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝

H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝@hd_421·28 Oca

Frida is really powerful and popular instrumentation frameworks, however there’s not many useful information sources on advanced usage gathered in single place, but here we have this gem, well done guys!

fernando@entdark_

Releasing today: learnfrida.info It's a small, free web handbook to learn about binary instrumentation using @fridadotre If you found this resource interesting, please share for others to learn!

English

Keşfet

@YouTube @BlackHatEvents @_bhamza @U039b @Farenain @trufae @EmericNasi @_reversense_