There’s a position open for the Cloud Vulnerability Research Team at Google that I’m a part of. I’ve grown a ton technically since joining and get to work with incredible folks. feel free to dm :)
Security Engineer, Cloud Vulnerability Research https://t.co/w7sem9bTyK
First big result from our new CPU research project, a use-after-free in AMD Zen2 processors! 🔥 AMD have just released updated microcode for affected systems, please update! https://t.co/NVPWFpVopz
I totally agree with the measures taken by Codegate in its CTF and I wish they would start to be done more often to control this kind of cheating (at least in important competitions).
I'm really excited to see Apple's analysis of the SockPuppet bug I reported a few years ago is now published. It was quite a powerful bug and a lot of work has gone in behind the scenes on XNU to make bugs like this harder to exploit: https://t.co/EUy1Hmtm3v
First post of my WNF research is out! It covers WNF internals, APIs, structs and some RE’d stuff.
It’s not complete since userland structs are constantly changing and I did not RE’d everything, but will try to keep it up to date!
https://t.co/crZJA2xW04
Well, 5th year of our CTF Team (@id10t_ctf) and 5th year in a row we score #1 in Spain. Also this year was our personal best in the global ranking, scoring #34 worldwide.
Nice try @flaggermeister, maybe next year ;)
New feature!
Introducing the CTF Archive. We now have a category on our challenges page filled with the best CTF challenges of the past.
There are so many brilliant challenges made by the community, we want help your hard work reach as many people as possible!
bd-jb: Blu-ray Disc Java Sandbox Escape affecting PS3, PS4, PS5. My talk at @hardwear_io will be uploaded in a few weeks. #hardwear_io
https://t.co/gVs03Ie46q
Spent the past 6 months working on coverage-guided, emulation-based greybox fuzzer that makes use of a custom Just-In-Time compiler.
Blog post describing the features/implementation alongside a link to the code are listed below.
https://t.co/K0vHmGiuvc
https://t.co/V6MBMKYbcG
3rd HackingBattleGrounds Winner!!!
I'm so glad to be in team Spain with @carlospolopm. It's been an amazing experience (:
Special thanks to @ippsec, @RoadRunnerHacks & @_JohnHammond to host the event and interview us at the end!
I'm happy to say that the curl project is just about to hand out the first bug bounty from our @Hacker0x01 program. More will follow. Details and CVEs will go public on May 22nd.