Tanic

After two years of research that started at @alephsecurity and ended at @CyberarkLabs, I'm very excited to present my research on attacking ISPs via layer-2 PPPoE protocol live at @defcon!!!! #defcon #defcon30 #pppoe #ppp @CyberArk forum.defcon.org/node/242004

I am releasing some of the stuff I have been working on, on side branches as the work is not complete and still pretty raw. This is in case anyone wants to use it as is or continue to work based on this.

#Ruckus has confirmed six additional CVEs for my latest research. I will present new RCEs on Ruckus devices using these vulnerabilities at #defcon28 #DEFCONSafeMode

After a long wait, my 2nd blogpost on Homograph attacks. Specifically, bypassing chrome's IDN policy.

#defcon teams are investing so much effort in #defcon28 safe mode and I feel so honored to be part of this year's talks. Get ready for some #ruckus :)

Small @GHIDRA_RE script that colors executed instructions to ease the debug procedure. Hope soon will add regs state to it :)) github.com/alephsecurity/…

There is an open position for a senior researcher on my team (located in Herzliya). Please contact me if relevant. @alephsecurity

@offensive_con has been amazing! Truly the best conf I have been to. A special thanks for having the opportunity to present the research #iOS on #QEMU that me and my team were working hard on. The slides and the code with the new features are now released. Enjoy!

Continuing the iOS exploit development series: Part 1: Heap Exploit Development: azeria-labs.com/heap-exploit-d… Part 2: Heap Overflows and the iOS Kernel Heap azeria-labs.com/heap-overflows… ✨NEW: Part 3: Grooming the iOS Kernel Heap azeria-labs.com/grooming-the-i…

#INFILTRATE20 Speaker Highlight: Jonathan Afek (@JonathanAfek) will be presenting 'Simplifying iOS Research: Booting the iOS Kernel to an Interactive Bash Shell on QEMU' infiltratecon.com/conference/spe…

Windows / Linux Local Privilege Escalation Workshop (Materials included !) 🥳 github.com/sagishahar/lpe…

Did you know that the address '<a@b.com>c@d.com' when given to SES will send an email to a@b.com? this could lead to interesting exploit scenarios with some email parsing libraries/code nathandavison.com/blog/exploitin…

Given a Pcap File, plot a network diagram displaying hosts in the network, network traffic, highlight important traffic #infosec #pentest #redteam #blueteam github.com/Srinivas11789/…

I wrote some automation around gophish, evilginx2, and postfix for faster phishing deployment. Looking for feedback and pull requests :D lockboxx.blogspot.com/2020/01/gophis… github.com/ahhh/phish_com…

Can't wait to present the progress we've made since #BHEU at @offensive_con! tfp0, full disk mounts with our own block device driver, most of the iOS services running, ssh and a textual framebuffer. #offensivecon

Can be really helpful indeed

@juliocesarfort @alephsecurity BTW, this research has started at the beginning of 2019 so I didn't have some of the references that available today.

Phishing is anyone's problem, but now it can get you in ways you didn't expect and for many users, no proper mitigation is currently available. Check it out: alephsecurity.com/2019/12/29/rev…

@juliocesarfort @alephsecurity Just saw your presentation, great work! Regarding the Australian paper, I couldn't find it, do you have some reference to it by any chance? Also, the references are in the links.

Part of my latest research, check it out:

➦ 36C3 - SELECT code_execution FROM * USING SQLite; » freie-welt.eu/de/1360575/Vid…