ulexec retweetledi
ulexec
2.7K posts
ulexec retweetledi
One researcher. ~$300 in API tokens. A working PoC against an April Patch Tuesday CVE.
Open-sourcing PatchWatch + Pocsmith, an agentic patch-diffing → exploit pipeline I built from off-the-shelf parts.
originhq.com/blog/patch-dif…
English
ulexec retweetledi
Full technical writeup + exploit technique for this 20-year-old bug in PostgreSQL
zeroday.cloud/blog/postgres-…
Tim Becker@tjbecker
Xint Code discovered a highly exploitable heap-buffer-overflow in PostgreSQL that existed for over 20 years. Our research team exploited this bug to claim $30,000 at ZeroDayCloud in December! Bug details are below
English
ulexec retweetledi
You can read a detailed technical report on the software vulnerabilities and exploits discovered by Claude Mythos Preview here: red.anthropic.com/2026/mythos-pr…
English
ulexec retweetledi
ulexec retweetledi
ulexec retweetledi
Pleased to announce my upcoming advanced ELF hacking course. 2-day instructor led workshop by ElfMaster
Workshop title: "The Art of ELF binary patching in Linux".
Become a pro at ELF binary patching with Shiva and learn the fundamental principles necessary to build custom ELF interpreters, loaders, and linkers to solve some of the worlds hardest security problems today.
Get the early bird special before April 13th.
eventbrite.com/e/the-art-of-e…
#ReverseEngineering #BinaryPatching
English
ulexec retweetledi
ulexec retweetledi
Joining the agentic vuln research hype, @EyalKraft and I did something. Unfortunately, it worked better than we hoped.
We spent a few weeks building an agentic loop that reverse-engineers and exploits kernel drivers. We already found 100+ exploitable drivers.
(link below)
English
@toly @moonshiesty @SolanaFndn We are also working towards open sourcing Radiant, a concolic execution framework for solana programs (inversive.xyz/blog/Radiant). It could be a good fit in that toolset
English
@moonshiesty @SolanaFndn What’s missing with just normal prompting to use litesvm and kani?
English
can we get this for rust smart contracts
@SolanaFndn
Alpin Yukseloglu@0xalpo
new collab from @paradigm and @OpenAI: evmbench is a benchmark and agent harness for exploiting smart contract bugs a few months ago, the best models found <20% of critical, fund-draining @Code4rena bugs in our benchmark. today they find > 70%
English
ulexec retweetledi
ulexec retweetledi
Binary obfuscation in 2026:
Just put ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FA... into your program 😎
English
ulexec retweetledi
ulexec retweetledi
Great collection of C/C++ compiler optimisations: xania.org/AoCO2025-archi…
English
Live coverage in fuzzing is massively under explored.
Now we can track it and show it to you.
This is just the beginning of an epic run for stateful fuzzing of smart contracts.
Recon@getreconxyz
Recon Pro runs now track and show you coverage over time. We've also updated to use the latest version of Echidna, which supports symbolic exploration. You can enable the symbolic worker by setting: `symExec: true` in your echidna.yaml
English
Sorry to ask but when this social network started to boost bullshit content instead of real knowledge? It's for a friend.
Computer Science@CompSciFact
The C code below compiles and prints "hello, world".
English
ulexec retweetledi
Hi! Im currently taking @OpenSecTraining Vulnerabilities 100X and Architecture 100X courses (p.ost2.fyi/courses), excellent resourcers to initiate in low-level security assestment!
Im proud to share the notes im currently developing based on the materiales im learning!
English
