Olivia
Online
alvise
@HBitmasks
PhD Student @vu5ec (Systems Security). Previously: decompilers @_revng, rockets @skyward_er
───○─ 🔊
Joined September 2018
248 Following
184 Followers
51 Posts
Hardware glitching masters have taken on Intel's microarchitecture - very, very cool! I'm so glad our work is contributing to research that was previously unimaginable. Research into hardware attacks on Intel processors has enormous potential...
https://t.co/4PQF1APL6E
Remote code execution on a Yamaha piano.
https://t.co/Gt2Yf5zO1D
The Spectre exploit chef @SanWieb just gave an impeccable talk at @USENIXSecurity about our work on Spectre gadgets analysis and native BHI exploitation. Very happy - and proud of the Distinguished Paper award too :)
Happy to report that our InSpectreGadget paper won a Distinguished Paper award at @USENIXSecurity:
https://t.co/Hh4sbo4dM4
@vu5ec @SanWieb @HBitmasks @c_giuffrida
Here is @SanWieb presenting the paper:
Just a few days left to apply to our PhD and PostDoc positions available at @vu5ec. If you love low-level systems hacking and would you like to work at a top systems security research group in Amsterdam, consider applying: https://t.co/XLxFJzmrG5
Who to follow
Law
@__L4w__
PhD student | CTF player for @towerofhanoi and @mHACKeroni | Nerd 🕹
babush
@pmontesel
@mhackeroni / I do stuff with computers / opinions not my own / 🇮🇹🇨🇦🇯🇵
Fabio Pagani 
@pagabuc
Vulnerability Research Lead @binarly_io. Prev: Postdoc @ucsantabarbara. Binary analysis, memory forensics et al. Captures flags with Shellphish and NOPS.
😎 We’re going to REcon 2024! 😎
This will be the first talk in which we introduce the decompiler since the open source release.
It will be very much an hands on talk. Don’t miss it.
See you in June in Montreal! ⚜️🌹☘️
https://t.co/AKmgU6ehGL
If you ever happen to look for Spectre gadgets manually and feel pain and loneliness, you should check https://t.co/Ho9NG26tGD ... It's been a wild ride, but working with @SanWieb was the best thing ever :) Also, BHI is back baby
Branch History Injection (BHI) is back! Disclosing Native BHI, bypassing deployed Spectre-v2/BHI mitigations (e.g., eBPF=off) to leak arbitrary kernel/host memory (e.g., root password hash below). Joint work by @SanWieb @HBitmasks @herbertbos @c_giuffrida: https://t.co/MF65XzpqnA
We ended up on HN and some interesting discussions emerged: https://t.co/rFeKRxE74G
Disclosing #SLAM, aka how to combine Spectre and Intel LAM (& co.) to leak kernel memory on future CPUs (demo below). Thousands of exploitable "unmasked" (or pointer chasing) gadgets in the Linux kernel. Joint work by @MatheHertogh @SanWieb @c_giuffrida: https://t.co/8sgL8t8eC5
I'm thrilled to announce that our paper "Speculation@Fault" @USENIXSecurity is online! Read about how we automatically find information leakages arising from CPU exceptions by fuzzing against speculative contracts.
I am extremely happy about this paper, which is the brainchild of my PhD student @__L4w__ and my colleague @JinBlackx.
BINO addresses the irksome problem of identifying inlined functions (specifically from C++ template classes) in binaries.
https://t.co/yQA6guZ60K
Debug Location coverage for the variables in the optimized binaries compiled with the newest release of LLVM look nice. A bit longer post is at https://t.co/ZaiOQZlNSG. We started from 45%, and now we are at 71%, nice! @llvmorg
Should we lose hope already on Rowhammer attacks? Andrea Di Dio from Vrije Universiteit Amsterdam is showing us at #NDSS23 that it is feasible to devise a software-based design to mitigate ECC-aware Rowhammer attacks.
Disclosing CHOP, aka how attackers can bypass commodity return address protections such as stack cookies by hijacking the exception handling process. Paper to appear @NDSSSymposium: https://t.co/SWNm3xhIzf. Joint work by @victor_duta Fabian Freyer @pagabuc @nSinusR @c_giuffrida
Easily the highest impact bug I found (yet)
What a blast! Thanks to all my incredible co-authors @aScarecrowHat @JinBlackx @mcarminati1988 @raistolo
And we got this. Very happy about that.
I am at @acm_ccs , where @HBitmasks is about to present "Canflict: Exploiting Peripheral Conflicts for Data-Link Layer Attacks on Automotive Networks".
Thanks to all coauthors: @HBitmasks, @aScarecrowHat, @mcarminati1988, @raistolo
Full paper: https://t.co/5XvgBvapi1
[update] We are presenting this work at @acm_ccs in a couple of weeks🥳 Come and say hi if you want to see some car hacking shenanigans :)
Paper: https://t.co/MQIMcKQOWr
You know what @angealbertini does with file formats, right? Well, we did the same thing with communications protocols - because, why not? 1/N
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers