Olivia
Online
Marcin Noga
@_Icewall
Security Researcher / Pentester / Malware hunter
Poland
Joined August 2013
1.1K Following
1.8K Followers
187 Posts
@yo_yo_yo_jbo @SEKTOR7net @yo_yo_yo_jbo That was my first idea.
But unfortunately AsusCertService.exe contains UAC manifest requiring this exe to be run with admin privilege's. So, trying to spawn this exec as a suspended process and then inject arb code won't work.
Exploiting Asus driver to escalate privileges.
With few clever tactics Marcin Noga managed to bypass several constraints implemented by the driver devs.
With hardlinks and ObfDereferenceObject() one can decrement PreviousMode of a process to enter god mode (this was patched in 24H2).
Nicely done, @_Icewall!
Post: https://t.co/wHMdSKs8gK
#redteam #maldev #malwredevelopment
Thanks, @GamersNexus, for presenting the bugs I found in ASUS Armoury Crate to a wider audience in such an accessible way!
https://t.co/kSX4sSEmxS
Who to follow
Piotr Bania
@PiotrBania
The world needs bad men. We keep the other bad men from the door.
starlabs
@starlabs_sg
A Singapore company that discovers vulnerabilities to help customers mitigate the risks of cyber attacks. Organisers of @offbyoneconf
Satoshi Tanda
@standa_t
Software security engineer and trainer
https://t.co/tenaquooTc
@Void_Sec I guess so, that's why I mentioned the timeline in the blog post . On pasted screenshots I only mention about mem leak primitive, but in general I wanted to signal that after 24H2 the exploit won't work.
Exploitation of Asus Armory Crate AsIO3.sys driver | authorization bypass + ObfDereferenceObject primitive to LPE - https://t.co/aHGxZexsvK
CVE-2025-1533 - Asus Armoury Crate AsIO3.sys stack-based buffer overflow vulnerability
https://t.co/eDbXCghbvg
Remember that Windows paths can be longer than MAX_PATH(260)!!! I wrote a few words about this 15 years (sick!) ago : https://t.co/wXklgdOiPA
The biggest takeaway from this talk is that macOS font renderer ALMOST never invokes the interpreter. If you were fuzzing TTF bytecode without paying attention, it was probably not hitting the interpreter at all.
I'll post slides shortly with other interesting details. #OBTS
@carste1n I have recently "built" for myself that thing : GMK87 + Brown Gaterons 3 Pro + Cherry profile PBT Dragon Ball keycaps
CVE-2023-39928 - Webkit MediaRecorder API stopRecording use-after-free vulnerability more info :
https://t.co/V0xQPtbzYs
@oshogbovx Radio Naukowe - https://t.co/p1vHMV98KV
Teammates have published an overview of five years worth of router security research which has resulted in hundreds of vulnerabilities discovered in routers from more than a dozen different companies.
On Friday I'll be doing my "PCI Express To Hell" talk:
https://t.co/h4dwzuhKjv
If you're building your own PCs you should check it out! Last year I reworked my whole computer setup and learned a lot about PCIE. Don't make the same mistakes I did ;)
Plz RT for range :)
@pedrib1337 https://t.co/f6n6aYWAPI
2 more to the collection :
CVE-2023-33133 - Microsoft Office Excel WebCharts out-of-bounds write vulnerability : https://t.co/e51pNDk79W
CVE-2023-32029 - Microsoft Office Excel FreePhisxdb arbitrary free vulnerability : https://t.co/fy3w2WpkLI
@maciej_je Gourdough's Big. Fat. Donuts.
+1 512-912-9070
https://t.co/mzImDke6h5
Ok, I am looking out for security researcher role. If you can help, please DM.
RT, like and recommendations are much appreciated. Here is My Linkedin profile, which will give you more details:
https://t.co/QO1V0Grmpl
Remember these? Original Lytro! Lightfield cameras of the future! I grabbed a few off eBay some time ago and took a peek at the firmware. Found secret unlock that enables full remote control of all camera features. Full writeup here: https://t.co/ztmWpMVgan
CVE-2022-31698
Pre-auth VMware vCenter Server Content Library denial of service vulnerability : https://t.co/uadH7rF2Tk
Last Seen Users on Sotwe
ANKARA TURBANLİ CİFTİZ
Seen from Turkey
Kumpulan Bacol
Seen from Turkey
Pasutri Fantasi
Seen from Indonesia
Strictly Mzansi🔞
Seen from South Africa
istri setia2
Seen from Turkey
el negro
Tlof mapona
Seen from South Africa
LilMilk 
Seen from Mexico
U g h t e a Ngeunah
Seen from Malaysia
chienne2rebeu
Seen from France
Most Popular Users
Elon Musk
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
109.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.3M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.7M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.4M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.1M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.4M followers