patate

@0xocdsec @ScottyBauer1 Any poc for those cross socs exploit maybe?

@patateQbool @ScottyBauer1 I like patches where I can do 0

In the wild + baseband + modem ❤️‍🔥

@0xocdsec @ScottyBauer1 Modem == GPU == Baseband.

@ScottyBauer1 Some sites say ITW. Christmas time up until March feels like big time spyware shop. Usually 6 months from here until parties will admit.

@matteyeux Happy to see people still maintaining our project, thanks a lot for this!

I updated my fork of IDArling to support IDA 9.3

@ScottyBauer1 @b1ack0wl @ScottyBauer1, shoot me a message when you'll manage to land a QPSI commit on P4, I might reapply!

@b1ack0wl maybe ill change that string to "go away vr-x-dev"

most unexpected .read callback from a device driver 🖤

@ScottyBauer1 @XploitBengineer Why did it never land? Sounds like a good mitigation

@XploitBengineer Nice work. 2 or 3 years ago I tried to get the team to take a mitigation to prevent rogue SMMU_TABLE_UPDATE's -- it never made it in. Essentially KGSL would only allocate KGSL first level page tables from a specific region. KGSL would notify the ucode of this region at boot.

I posted a short blog about how a Samsung GPU vulnerability (CVE-2025-21479) can be leveraged for an LPE on affected devices xploitbengineer.github.io/CVE-2025-21479

@thezdi Meme exploits aside, we tackle exciting browser and mobile security challenges. Always seeking experienced vulnerability researchers and exploit developers who love solving hard problems. Ping me with questions or apply directly on our website

Absolutely buzzing! The moment @XploitBengineer and @munmap successfully pwned the Samsung Galaxy S25 at @thezdi Pwn2Own! youtube.com/live/pFPhdBcyy…

Bang! Interrupt Labs successfully took over the #Samsung Galaxy 25 with 1 click. They remotely enabled the camera and location services, which has some frightening privacy implications. They head off to the disclosure room to explain how it works. #Pwn2Own

NEED YOUR HELP! My Friend/Teacher Soroush (@irsdl) Is looking for a new company to join, you know him as the .NET-God, the guy who has popped exchange, sharepoint, has maintained ysoserial_.net for years, contributed to the exploitation scene numerous times, taught all of you about what .net ghost webshells are, taught you about what viewstate exploitation is, how .net remoting exploitation issues can be solved, iis cookieless, web_config exploitation, countless of blogs, talks, techniques,... but companies keep saying: "we aren't hiring right now!" if i was in position of hiring, woudln't wanna miss out on having one of THE BEST in my team you're retweet is Extremely appreciated ❤️‍🔥 soroush, if you see this, don't hate me, had to do it without telling you

Checkout this 'Pathway to VR' profile from Axel, a Principal Researcher in our Browsers team in the US. Axel chats about how forming a community and presence for yourself online can be a great door-opener in the world of VR.

📢The end of Hexacon's CFP is approaching (July 14th)! If you have technical content you would like to present in Paris, you have another ~11 days to send it in ✍️ Topics of interest are vr / xdev / hardware hax, appsec & offensive security in general 🐛🐜🪲 See you there!👋

#OffensiveCon25 videos are now up! youtube.com/playlist?list=…

@yarden_shafir @maxpl0it @sam4k1

I guess this mf of @patateQbool is finally hanging out with the cool kids @maxpl0it @sam4k1

A fantastic opportunity for an experienced vulnerability researcher to join our word-class Browsers team. Remote work, hybrid or in office opportunities available. Check out our careers page for the full range of roles available globally. buff.ly/4apXYC1

Come for a chat at @DistrictCon to hear about all the exciting things @InterruptLabs is working on. Who doesn’t want to work alongside these legends…. @munmap @maxpl0it

@hexadeclan No excuse to leave early now.

winning 4d chess move of this year was booking an airbnb literally outside of le 138

The past year has been amazing. From marriage, to Pwn2Own to a Pwnie Award, I'm so grateful. I'm using the money I've won from hacking competitions, bounties, & RB for two ppl to travel & attend Hexacon, the premier offensive security con in Paris, France. forms.gle/zt9RaR7EEvTxWG…

I consider all the participants with a pwn2own Xiaomi entry winning this indirect @PwnieAwards @InterruptLabs

@DThompsonDev @francoisgalinou 🤔

🫣

@hexadeclan Can @BrewDog start sponsoring as well please

Monster or Redbull need to start sponsoring vr shops or some shit because I'm sick of paying for it. It's the one endurance sport they are missing smh.