davii

46 posts

davii

davii

@shadow06234

omg hiii

Brazil Katılım Eylül 2016
615 Takip Edilen33 Takipçiler
davii retweetledi
idek
idek@idekCTF·
It's peak summer and it's time to put on your sunglasses 😎and swimsuit 🩲👙... Unless... idekCTF IS HAPPENING IN 3 DAYS ⏰⏰⏰ 1st place wins $1,500🤑, idek Hoodies and an invitation to @malta_ctf's Finals in Valletta, Malta September 12-15 Link below ⬇️
idek tweet media
English
2
10
30
3.6K
davii retweetledi
Elma
Elma@elma_ios·
I was messing around with symbol resolution in ELF and came up with an obfuscation technique on abusing symbol resolution in ELF programs that is able to trick tools (i.e. Ghidra, IDA, GDB) into showing the wrong library function calls. blog.elmo.sg/posts/breaking…
English
1
43
141
9.4K
davii retweetledi
OpenSecurityTraining2
OpenSecurityTraining2@OpenSecTraining·
The new "Fuzzing 1001: Introductory white-box fuzzing with AFL++" by Francesco Pollicino was recently released at ost2.fyi/Fuzz1001. We've also released updated Learning Paths (LPs) that show how the class fits in to the Vulnerabilities & Secure Development LPs: ost2.fyi/Learning-Paths…
OpenSecurityTraining2 tweet mediaOpenSecurityTraining2 tweet media
English
0
23
100
6.5K
davii retweetledi
Botafogo F.R.
Botafogo F.R.@Botafogo·
NÃO TEMOS MEDO! VITÓRIA DO CAMPEÃO DA AMÉRICA! 🔥🌎 BOTAFOGO SE AGIGANTA NO ROSE BOWL E VENCE O PSG PELA COPA DO MUNDO DE CLUBES DA FIFA! O CLUBE MAIS TRADICIONAL HONRA A SUA HISTÓRIA, O BRASIL, O CONTINENTE E O ESPORTE MAIS APAIXONANTE DO PLANETA! VAAAAAAAAAAAAMOS, GLORIOOOOOOOOOSO! #VAMOSBOTAFOGO #FIFACWC #TAKEITTOTHEWORLD
Botafogo F.R. tweet media
Português
2K
11.6K
78.3K
3.5M
davii retweetledi
Disconnect3d
Disconnect3d@disconnect3d_pl·
We released new Pwndbg: github.com/pwndbg/pwndbg/… ! It brings new kernel commands for dumping heap allocator info, display of not taken branches (X marker) in disasm, better disasm for ARM/MIPS/LoongArch64, initial s390x support & more! Sponsor us at github.com/sponsors/pwndbg !
Disconnect3d tweet mediaDisconnect3d tweet mediaDisconnect3d tweet mediaDisconnect3d tweet media
English
16
68
297
21.9K
David Wong
David Wong@cryptodavidw·
a while back I was reading about whitebox fuzzing and how fuzzers would use SAT solvers to unstuck themselves if needed. Have there been more work done to make these practical? Are there any interesting blogposts of people actually finding bugs with these advanced fuzzers?
English
4
0
11
1.8K
davii retweetledi
sam4k
sam4k@sam4k1·
with offensivecon around the corner, i figured id write another post on linux kernel exploitation techniques - this time i cover the world of page table exploitation! enjoy 🤓 sam4k.com/page-table-ker…
English
5
79
295
16.8K
davii
davii@shadow06234·
@a13xp0p0v looks cool! will the talk be posted on youtube?
English
1
0
1
654
Alexander Popov
Alexander Popov@a13xp0p0v·
Slides of my talk at #Zer0Con2025! ⚡️ Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits ⚡️ I presented the kernel-hack-drill open-source project and showed how it helped me to exploit CVE-2024-50264 in the Linux kernel. Enjoy! a13xp0p0v.github.io/img/Alexander_…
Alexander Popov tweet mediaAlexander Popov tweet mediaAlexander Popov tweet mediaAlexander Popov tweet media
English
3
102
346
28.6K
Alon Ben Tsur
Alon Ben Tsur@iamgweej·
I am quite displeased with the behavior of `rcu_free`
English
2
1
4
822
davii
davii@shadow06234·
@pwningsystems @roddux wouldn't it in the end still prevent a possible "mitigation bypass"? I mean yeah all the other techniques that are actually being used still works but idk
English
1
0
1
75
davii
davii@shadow06234·
is it really that impractical to disable smap/smep by tweaking the cr4 register with some good gadgets?
English
1
0
1
243
davii
davii@shadow06234·
what the actual fuck
davii tweet media
English
0
0
1
152
davii
davii@shadow06234·
@v4bel this is neat! I took a look around and found the inet_create() on the AF_INET socket. it looks a little bit easier to trigger (?)
English
1
0
3
558
V4bel
V4bel@v4bel·
Did you know that in Upstream, the conventional “overwriting modprobe_path” technique doesn’t work anymore? So, I developed a new technique that generally triggers modprobe_path. It's a simple idea—nothing fancy, but pretty useful 🙃
Theori@theori_io

🔍 NEW RESEARCH: We've revived the modprobe_path privilege escalation technique in #Linux kernels. How? Read out blog to find out: blog.theori.io/reviving-the-m… Remember, we will always find a new way!

English
1
9
52
11K