Urk3L

Nice move from PT!

🟥 CFP live — Positive Hack Talks, Jakarta 🇮🇩, July 23 → cfp.phdays.com/phtalks-jakart… Hackers, defenders, bug hunters, researchers — submit your talk. ✅ Flights & hotel covered. Our 5th #PHTalks — always hits hard. Free community-driven event. 250+ infosec pros.

Meanwhile, at @travisgoodspeed@mastodon.social track, people are concentrated marking bits #r2con2024

Surprising facts about #fuzzing. A thread in slides 👇

We just created a blog for OSS-Fuzz! The first post is about extending our LLM fuzz harness generation work to completely new, unfuzzed projects: blog.oss-fuzz.com/posts/introduc…

>built an entire OS in Rust >video editor in Zig >a filesystem in C >0 care about views, subs >some vids have <100 views immensely based

Proof review time, we're almost there! 🦜

One SMS to Root Them All: Exposing Critical Threats in Millions of Connected Devices by Alexander Kozlov and Sergey Anufrienko is now on!

This wonderful @BSidesPrishtina conference has ended. @dprebreza thank you for the hospitality, atmosphere and help! Speakers you are really cool and great persons! #cybersec #malware #hacking #research #cryptography #windows #ransomware #threatintel #threathunting #cybercrime

One SMS to Root Them All: Exposing Critical Threats in Millions of Connected Devices by Alexander Kozlov and Sergey Anufrienko offensivecon.org/speakers/2024/…

The amount of free training courses available these days for #cybersecurity is wild. People ask me if its worth paying for a specific course? First, have you seen all the free material out there? Lets dig into a selection! 👇

If you want to master something, teach it.

I gave Claude 3 the entire source of a small C GIF decoding library I found on GitHub, and asked it to write me a Python function to generate random GIFs that exercised the parser. Its GIF generator got 92% line coverage in the decoder and found 4 memory safety bugs and one hang.

A kids toy, designed for educational needs has vulnerabilities which allow malicious actors to easily make video calls to children using the toy, steal parental account details, and even modify the firmware. Full details 👇 securelist.com/smart-robot-se…

"𝐈𝐭 𝐢𝐬 𝐭𝐡𝐞 𝐦𝐨𝐬𝐭 𝐜𝐨𝐦𝐩𝐥𝐢𝐜𝐚𝐭𝐞𝐝 𝐚𝐭𝐭𝐚𝐜𝐤 𝐭𝐡𝐚𝐭 𝐜𝐚𝐧 𝐡𝐚𝐩𝐩𝐞𝐧 𝐭𝐨 𝐚 𝐝𝐞𝐯𝐢𝐜𝐞." In this year's SAS we'll be going into further detail with #iOSTriangulation including how we discovered & much more. Watch ⇒ youtu.be/BQzLgSNuZCc #TheSAS2023

#flipperzeronights @flipper_net dope stuff!

Frida 15 is out! 🎉 Release notes coming soon, but in the meantime, for the adventurous: grab a frida-portal binary and start it, then configure frida-gadget with { type: connect }, and finally do `frida-ps -R`. Then check out frida-join in frida-tools v10, also just released 🚀

Our global Kaspersky ICS team is growing: looking for a Security Researcher ICS CERT linkedin.com/jobs/view/2246…

At my SAS Online 2020 workshop I will be speaking about current trends of fuzzing since they have changed a lot lately. I’ll also share my ideas on how fuzzing should be approached nowadays and how to move away from “I’ve just launched AFL and found a bug, haha”

Also for informed defense and design of arbitrary virtualization environments