CyberInfinite

This year I have the honor to hold my hardware hacking training at @brucon and @OrangeCon_nl. To give some better insights I am releasing a couple of videos that shows some highlights and concepts. We directly start with power glitching attacks. :) youtu.be/BQGMffn05mw?fe…

Do you guys twist your uart connection? If not, it can make a huge difference if you can enter the bootloader or not 😅 spent my whole thursday on it… if you use the typical jumper wires, they cause some interference on the other line which ended up with no bootloader response

I’ve updated my blog post about CVE-2025-9501 and included bypasses for all W3 Total Cache versions up to and including the latest 2.8.15. #wordpress #security rcesecurity.com/2025/11/exploi…

Simple Spectrum Analyzer on the nRF52832 / allmiibo clone device that is available on aliexpress for as low as 10€

Part 2: how to dump the firmware from #IoT devices. This time we are using u-boot, which is not my preferred way but handy when dealing with eMMCs. If you can interrupt the bootloader you normally get shell access. If it is pw locked ->wait for part 3 :) youtu.be/Z8lmsmwRhng

@boredpentester Ahh sorry to hear :/ thank you for this amazing writeup. I need to read it multiple times :D wish you all the best for the automotive category! Good luck! :)

The story of how I almost pwned the Lexmark Postscript stack for Pwn2Own 2025... And I would have gotten away with it too, if it hadn't been for those meddling firmware updates! boredpentester.com/pwn2own-2025-p…

@l33d0hyun Imagine having a bug collision and lining up 2nd 😅

OMG.. whatsapp 0c in pwn2own

In this video series I will show you different kind of options when it comes down to firmware extraction of IoT devices. We start with the most reliable and fastest option. The only downside: It requires a root shell (uart). youtu.be/2dNCBcfc3Yo

Nice! Thanks for sharing! :)

Keeping track of all the different rooting options is quite hard. Therefore I created the following cheat sheet, to make this approach a little bit easier. These are just the typical hardware options to gain root access on a device. Software will follow next :) do I miss sth? :)

@b1ack0wl Do you participate or just for fun? :)

🖤

First time seeing a custom ball bearing within a home security camera

The @SEC_T_org organizers posted the video from my talk "Crowdsourcing Bluetooth identity, to understand Bluetooth vulnerability" in what seems like record time. You can find the video & slides (and previous truncated-for-time version) here: darkmentor.com/publication/20…

All #OrangeCon2025 talks are now online! Watch them on our YouTube channel: @OrangeCon" target="_blank" rel="nofollow noopener">youtube.com/@OrangeCon

@MakeAugusta Whatever this is, the wiring is ben eater approved.

wild

@BitBangingBytes Great movie! Really kicked in when heartbleed happened :D but I see, you already got the universal decipher left next to you :D

The secret to my success…

New: Tesla said it didn't have critical data in a fatal crash. Then a hacker found it. "For any reasonable person, it was obvious the data was there." The story of white hat hacker @greentheonly's role in the case the led to a $243 million verdict against Tesla.

Seeing talks like this makes me wonder when top tier exploiters team up with hardware people to craft the next level exploit? It does not have to work on other devices if it gives you the ability to jailbreak yours? Is this collab already happening? :D

@b1ack0wl @phrack @richinseattle @netspooky Awesome writeup! Thanks for sharing! :)

the article I wrote for @phrack is online! thanks to @richinseattle for encouraging me to submit an article and to @netspooky who proofread and suggested things for me to add/edit Enjoy 🖤 #mmio" target="_blank" rel="nofollow noopener">phrack.org/issues/72/3_md…

unfortunately and he seems stuck in this condition. We’re based in Berlin, Germany but really any contact with a specialist who would be willing to take on this case we’d be grateful for! To reach use you can DM me or contact us via Email at unclear.condition@gmail.com [3/3]

@travisgoodspeed @BitBangingBytes Ah nice! 😅

@CyberInfinite @BitBangingBytes Thermal paper from a receipt printer is actually a great way to detect leaks. HNO3 fumes quickly turn it dark black.

It’s been over 1 year since I made this fuming nitric acid for my hardwear.io talk… ✅ Dual container storage works 😱 Stored inside my home office! 💪🏽 Still fuming and decaps fast