We were honored to be invited to BlackHat Asia 2026 #BHASIA@BlackHatEvents and travel to Singapore, where we presented a talk titled “VsyncBreaker: Subverting Screen Trust via State Disruption and ONE-WAY Flooding”
Thanks my partner @MGAldys4
做了一个视频介绍我和 @0chencc 开发的新项目,AI给取的标题名是《开发阶段就发现安全风险:我们做了一个 VS Code 扫描插件》。实际上,也是我想表达的,HaE项目不仅可以为网络安全从业人员服务,也可以为广大的开发这服务!
HaE File使用讲解来了!欢迎大家一键三连!
https://t.co/LwF5JmBldg
I’ve known @VulkeyChen for over a decade, and we’ve been working together ever since. HaE was our first collaborative project. Back then, we never imagined it would have such a huge impact today or that it would win an award from @Burp_Suite . My childhood dream is coming true.
Our team's open-source project HaE (Highlighter And Extractor), meticulously crafted and refined over eight years of continuous iteration, has been honored with the Most Nominated Award at the Burp Extensibility Awards 2026(https://t.co/LBPlHNPhtZ).Thanks to the @Burp_Suite@BApp_Store team for all their efforts!
"Highlighter And Extractor acts like a smart filter, immediately drawing my eyes to the requests that matter most. It feels like having an extra pair of eyes watching the traffic for me. The rule-based automation - the ability to write custom regex rules and have Burp automatically highlight and extract data - is a game-changer."
https://t.co/iFjJqc8VmY
Our talk at #BHASIA@BlackHatEvents 2026 has successfully concluded. It's been a great pleasure to explore Ghost Bits together with my co-author @1ue1166323
and present this research on stage. Also, thanks to all the friends who provided help for our briefing:
@chun_springX
Thanks for Microsoft's invitation. This will be my first time attending Black Hat Asia this year as an audience member. If you're also there tomorrow, feel free to come say hi.
In fact, after watching the @DarkNavyOrg
X yesterday, I've come up with a "一石三鸟" repository myself.
Here's a demo, recorded yesterday, only codex was recorded.
Using HaE effectively can easily earn you a bounty of 1W$. To make the most of HaE, you should understand each of its rules and correlate the large amount of data it matches. This way, you will uncover more high-risk vulnerabilities.
https://t.co/wnYkkQMMlm