nikoschalk

Here you go, a small collection of browser security talks I’m watching lately. If you know any other good YouTube talks on browser internals / exploitation, drop them below (I’ll update it in the playlist)👇 youtube.com/playlist?list=…

Modern iOS Security Features – A Deep Dive by Moritz Steffin and @naehrdine arxiv.org/pdf/2510.09272

KernelGP: Racing Against the Android Kernel Talk by Chariton Karamitas about ways to use FUSE for kernel exploitation from unprivileged SELinux contexts on Android. youtube.com/watch?v=DJBGu2…

The original video that got a DMCA takedown from VMPSoft had 48K views, let's try and match that number... (p.s. you can pinch to zoom on the video if the text is too small on your phone, or pop open a viewer on your desktop)

Frida 17 is out 🥳 frida.re/news/2025/05/1…

VMPSoft has been DMCA-ing YouTube videos which show how to combat malware payloads abusing VMProtect

Nintendo ransomware group

Would you look at that, it's tmp.0ut Volume 4! Happy Friday, hope you enjoy this latest issue! tmpout.sh/4/

Hi! Today I'm releasing SecTube - collection of 500+ videos from 20 IT security events. There are categories which might be interesting for you: Reverse, Binary Exploitation, Malware. A lot of hardcore talks and pure knowledge :) sectube.tv/categories/bin…

Can you spot the bug? The goal is to leak the secret.

Oh hey! My last R&D project at @quarkslab is finally out. :D tl.dr. playing with the Steam Deck is fun <3 (i.e. UEFI exploit w/ super limited primitives) blog.quarkslab.com/being-overlord…

Vulnerability research is a marathon, not a sprint. Many start out strong but can't keep up the motivation when the going gets tough and the bugs are not flowing. Don't rush it. Be consistent. Keep your pace. You'll get there.

github.com/google/securit… Our newest research project is finally public! We can load malicious microcode on Zen1-Zen4 CPUs!

I’m very excited to announce that we at V8 Security have finally published our first version of Fuzzilli that understands Wasm! Go check it out at github.com/googleprojectz…. While we still have a way to go in improving it, we think it shows a promising approach!

Pwndbg 2025.01 is out! It adds official LLDB support including support for macOS and Mach-O binaries, improved performance, enhanced embedded debugging & many more! Also, want to support us or buy us a coffee? See our GH sponsors: github.com/sponsors/pwndbg github.com/pwndbg/pwndbg/…

hex editor i could only dream of.. 🤌 github.com/WerWolv/ImHex

rootCause redd.it/1hmqe6g

IT'S EXPLOITS CLUB DAY 📰 @chompie1337 talks Exploit Dev lifecycle 9k words on Binder Internals from the Android Red Team @LeviathanSec kicks off a UEFI hacking series Pwn2Own Stories and motivation from @bdmcbri ➕ Jobs and MORE 👇 blog.exploits.club/exploits-club-…

Releasing the slides from my BSides Canberra Keynote - The Exploit Development Lifecycle: From Concept To Compromise drive.google.com/file/d/1jHnVdj…