seprioth

@novitoll the bugs are real and exploitation of badkarma is easy.

found vulnerabilities are valid though, verified. But exploitation is HAM.

Does anyone know working exploit for CVE-2020-12351(2)? Wanna know details of exploitation, not the result. It's either complex remote kernel exploitation with `a2mp_info_req` leak and `sock->data` type confusion OR POC video by @theflow0 was fake. #bleedingtooth #bluetooth

if you havent read this alredy u shoult do it. static programm analysis by moller and schwartzbach: cs.au.dk/~amoeller/spa/…

from @gannimo block oriented programming for data only exploits. github.com/HexHive/BOPC nebelwelt.net/publications/f… nebelwelt.net/blog/20181231-… comes with compiler and research papers + short overview in a blog. nice work

@mikesiko hi mike. iam a private developer from germany. i have a presentation next days about reversing and i maybee like to show some of your examples from the book. is this ok for you?

shade github.com/s1341/shade similar to shadow github.com/CENSUS/shadow from @_argp but 4 dlmalloc.

(advanced)Data-Oriented Programming: huhong-nus.github.io/advanced-DOP/i… and automatic generation usenix.org/node/190963

(State of) The Art of War: Offensive Techniques in Binary Analysis cs.ucsb.edu/~vigna/publica…

i got so mutch love for angr angr.io http://shellphish.net/cgc/

Weird machines, exploitability, and provable unexploitability: ieeexplore.ieee.org/document/82268… from bright minds of halver, stealth, rpw, fx, sb,..

loop oriented programming: pdfs.semanticscholar.org/3650/8544e6958…

keep pushing radare2, capstone, keystone, unicorn, ..

VisUAL: A highly visual ARM emulator bit.ly/2r9pDBD but only as binary download available @pdp

this e-book has a great coverage of x86/x64, ARM/ARM64, MIPS, Java/JVM:beginners.re

coop: couse its missing on /r/vrd syssec.rub.de/media/emma/ver…

Subversive-C: usenix.org/system/files/c…

Quick introduction into SAT/SMT solvers and symbolic execution by yurichev: yurichev.com/tmp/SAT_SMT_DR…

BASIC/VB C/C++ ASM(sparc,mips, 86/64, arm) PHP PERL JAVA LUA #FirstSevenLanguages

goldie nobody had spend attention to: stackframeing nx and randomized image base on Windows (nergal style) in '04 bit.ly/2bolcPE

@dinodaizovii remember some codes fromsauron and spacewalker who using rop before (not ret2libc) and matrix_challege2.c was required to rop