Going to share about my work with @SachaKozma on the Samsung Galaxy S25 at Bugscale in March at Insomni'Hack! We managed to get a one-click RCE with some limitations; further details will be disclosed during the talk as the bugs are still in the process of patching.
The time has come, and with it your reading material for the week.
Phrack #71 is officially released ONLINE! Let us know what you think!
https://t.co/BRnK9lnGjI
I've audited the Android kernel in late 2023, and reported 10+ kernel bugs to Google, along with 2 exploits. Today, I'm releasing the first exploit, targeting the Mali GPU on Pixel devices, accessible from an untrusted_app context.
https://t.co/r7wXj7TvwH
New research 👉 Exception Oriented Programming, Part 2: Weaponizing Fundamental Weaknesses in Exception Unwinding to Gain Code Execution https://t.co/4jZJM8u3Ir
🔥 We are thrilled to announce our first sponsor!
🙏 Thank you @bugscale for helping us make this highly technical conference possible
🐞 To find out more about Bugscale:
➡️ https://t.co/TQZxoVczfc
https://t.co/6LIYKjETkn
#HEXACON2022
Logical sandbox escape in AppJailLauncher (fix in AppJailLauncher plus Microsoft CVE-2021-41346), thanks @thalium_team for the blog post that led to the discovery of the bugs !
https://t.co/ukRwPogStZ
Lots of nice techniques demonstrated here, defeating basically everything upstream mitigation-wise as well as the not-yet-merged FG-KASLR: https://t.co/tVqQI1XO01
A few months ago Cellebrite announced that they would begin parsing data from Signal in their extraction tools. It seems they're not doing that very carefully.
Exploiting vulnerabilities in Cellebrite's software, from an app's perspective: https://t.co/9ar6ypnPe2
Tenet is an #IDAPro plugin for exploring execution traces. The goal of this plugin is to provide more natural, human controls for navigating execution traces against a given binary.
Check it out: https://t.co/pbkOfLnMqw
#reverseengineering#idapython
At last i finish my writeup of TCTF Chrome challenge and my first blog, it was really a long time😂 In addition, I give the forth challenge - Chromium Fullchain++ at the end of the writeup. Give it a try and i'll mail some gifts for the first 3 winners😜 https://t.co/lYaIZiAXGN