Cristofaro Mune

Humbled to share I will be keynoting at LangSec 2025. I am thankful for such a unique honor, at one of the most prestigious security venues in the world.

We live in interesting times. Last month Linux patched a core uaf in the epoll subsystem, we rarely see these kind of bugs. As i like these kind of bugs, i wrote a few words about it here: guysrd.github.io

Sergey Bratus @sergeybratus is kicking off the @IEEESSP workshops by remembering our friend and fellow hacker FX of Phenoelit @41414141, one of the leaders of #langsec

@pulsoid @offensive_con @Binary_Gecko Hi Cristofaro, I don't think you've seen it yet, but I wrote a post on my blog about your excellent presentation at H2HC 2024. Security Conferences in 2024 blog.andersonc0d3.io/2026/01/31/sec…

@andersonc0d3 @offensive_con @Binary_Gecko Dear Anderson, No, indeed, I was not aware. Thank you so much! It's been an interesting read and I am happy the topic has been resonating with both of us and I thank you for letting me know. 🙏 Happy to talk about it anytime :)

Back from an amazing @offensive_con 2026! It's been an honor to be on stage and present our Google WiFi Pro/QSEE research. Thanks everyone at @Binary_Gecko for making it awesome.

We let Claude reproduce our EM fault injection attack on Google's TV Streamer 4K — from restricted adb shell to root — using only our presentation slides and the tool manuals as input. Time to root in <15 minutes. 🤯 Full write-up 👇 raelize.com/blog/ai-fi-rep…

One EM glitch forces setresuid to hand the shell user root on Google's TV Streamer 4K. Full breakdown from our @hardwear_io Amsterdam talk last year: raelize.com/blog/setresuid…

Exploiting QSEE Vulnerabilities In Google's Wifi Pro by @pulsoid

Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space! by @1ce0ear and @jmartijnb

We've seen numerous examples where LLMs are doing the heavy lifting for software vulnerability research. Not too many examples (yet) for hardware vulnerabilities. For our latest blog post we gave @claudeai full control over our hardware glitching setup: raelize.com/blog/ai-fi-giv…

@mrgretzky @0xocdsec @offensive_con I am sorry to hear Kuba! I would have loved to meet again. Always a great pleasure. But, indeed, I hope we get an opportunity soon :)

@pulsoid @0xocdsec @offensive_con Congrats, Cristofaro! Will not be able to make it for the talk, but see you at Warcon this year? 😀

Great to be on stage at @offensive_con 2026! We will be modifying EL3 memory directly from NS-EL0. ;) Stay tuned!

Twelfth LangSec IEEE Security & Privacy workshop announces its preliminary agenda langsec.org/spw26/abstract… . Join us on May 21 for two keynotes on formal methods reaching broad industry practice, a panel on AI & LangSec, and talks. Work-in-progress reports and more TBA soon.

Our 2026 agenda is live! 🔗 offensivecon.org/agenda

I’m #hiring an individual contributor for a fully remote, global role at the intersection of vulnerability research, exploit development, and ML/AI — with a focus on fine-tuning open-weight #LLMs. 🧠 I’m not looking for an “LLM whisperer” or an “LLM pilot.” 🚫 I’m looking for someone who deeply understands post-training, data, evaluation, and how to make models reliable in real-world environments. 🔐 The application link is in the first comment. 🌍 #Hiring #LLM #AI #ML #FineTuning #CyberSecurity #llmwhisperer #llmpilot

I have a job opening on my team. If you're interested in incident response & software security across a wide range of industries (Laptops, Auto, Mobile, Datacenter) while working with very talented people please apply. DMs are open for questions*. careers.qualcomm.com/careers/job/44…

I finally managed to write up some memories about my recently deceased and very dear friend, Felix 'Fx' Lindner. #Halvar" target="_blank" rel="nofollow noopener">phenoelit.de/fx.html#Halvar

Many of us are gathering in Berlin today to celebrate the life of Fx/Phenoelit. Halvar wrote it how I remember Fx best: Raw & unfiltered talent. thc.org/404/fx/fx-gone… ❤️We miss you. But we are all here. So many friends❤️ #phneutral

And #MobSec, a new @raelizecom training is born. Explore how, starting from a single vulnerability, Android FBE can be broken. If you are into Android forensics, or if you have ever wondered about the magic spells for accessing encrypted user data.. MobSec is definitely for you.

My talk at RE//verse is online, pure geek entertainment youtube.com/watch?v=UKGH_Y… Slides #slide=id.g58816a5281_0_0" target="_blank" rel="nofollow noopener">docs.google.com/presentation/d… CosmicHammer project - send us your bitflips github.com/fuzzsociety/Co… Please give it some RT love, this is the ultimate twist of rowhammer @halvarflake @moyix