Esoj

over 1 year ago

Aqui estão os slides para a minha talk da bsides rj -https://t.co/4X4myR8M3S

0

7

1

2

536

7 months ago

@brunaswapit us amoreco

0

1

0

17

9 months ago

Fui taxado em 400% 🥳 Comprei um mini processador que custa 50 dolares + 40 de frete = 90 USD (513 reais) Imposto alfandegário: 2023 Reais 😍 Basicamente a @fedexlheajuda lançou um valor de 330 dólares de frete no pacote e o contribuinte brasileiro que se lasque

_esoj1's tweet photo. Fui taxado em 400% 🥳
Comprei um mini processador que custa 50 dolares + 40 de frete = 90 USD (513 reais)
Imposto alfandegário: 2023 Reais 😍
Basicamente a @fedexlheajuda lançou um valor de 330 dólares de frete no pacote e o contribuinte brasileiro que se lasque https://t.co/XTtF3njOu4

2

4

1

0

366

Security Engineer @ Google, likes fuzzing, static analysis and VR. The opinions stated here are my own, not those of my company.

almost 2 years ago

@julianapiazzaa Carentola

0

109

Who to follow

Jordy Zomer

@pwningsystems

Bien 🇻🇳

@bienpnn

A weeb that loves crashing software | @qriousec & @seasecresponse & @ProjectSEKAIctf | アイマス最高 | weeb @UdonLover149

faulty *ptrrr

@0x_shaq

technologia!! 🫴🏼 creator of https://t.co/wSeiHuRjxx

_esoj1 retweeted

GRIS UFRJ @gris_ufrj

over 2 years ago

Junte-se ao GRIS: Se você é estudante ou entusiasta da segurança da informação e deseja participar ativamente de pesquisas inovadoras ou competições de CTF, o GRIS é o lugar certo para você. Link do forms - https://t.co/UpHaqQPlkR

0

6

2

0

849

_esoj1 retweeted

GRIS UFRJ @gris_ufrj

almost 3 years ago

Explorando técnicas de engenharia reversa em jogos: https://t.co/2q2NlrshYN

1

24

6

2K

_esoj1 retweeted

Alexandra Sandulescu @fkaasan

almost 3 years ago

Tavis found a fascinating architectural CPU bug 🐞

3

34

4

3

8K

_esoj1 retweeted

almost 3 years ago

The video for the talk is available. I hope folks enjoy and feel free to send me feedback, comments, criticisms (privately or publicly, either way is welcome!)

5

45

20

3

22K

_esoj1 retweeted

about 3 years ago

The slides for my keynote at https://t.co/pFeCb8lDzo are available (as all others) - it has a few less known stories on uarch/HW security: https://t.co/vFJRfGYTTf @hardwear_io

2

118

44

21

22K

about 3 years ago

@bsdaemon The name is a trolling btw

0

1

0

264

about 3 years ago

@bsdaemon and I have observed that in some instances of major cloud providers, the userspace mitigation for spectre-BTI still leaves the victim exposed to attacks. Check out hyperbleed - Current state of spectre-BTI mitigations on cloud: https://t.co/DfgbPB1WC8

_esoj1's tweet photo. @bsdaemon and I have observed that in some instances of major cloud providers, the userspace mitigation for spectre-BTI still leaves the victim exposed to attacks. Check out hyperbleed - Current state of spectre-BTI mitigations on cloud:
https://t.co/DfgbPB1WC8 https://t.co/7kzlCUKAFZ

1

30

9

1

8K

about 3 years ago

In RET2ASLR we can leak ASLR from the BTB in under a minute. Plz use the speculation control feature for userspace applications dealing with sensitive data. https://t.co/8LSdsbqaRh

2

30

3

6

3K

about 3 years ago

Vulnerable code can be as simple as a for loop + ret executing multiple times 🥲

0

6

0

337

Ekoparty | Hacking everything

about 3 years ago

This talk got old really fast, now we can do the same thing with return instructions! 🥳🤯😰 Check out RET2ASLR: https://t.co/8xXMPiH8vR

@ekoparty

about 3 years ago

En la #Eko2022, @_esoj1 nos presentó una nueva técnica basada en Spectre v2 para abusar de los predictores de rama con el fin de eludir ASLR en las CPU de Intel, abusando de dos hechos: 1) el atacante puede contaminar el búfer de destino de la rama, y 2) las víctimas pueden desencadenar una predicción errónea de la rama en el proceso del atacante, lo que lo lleva a saltar especulativamente a la misma dirección protegida. ⛓️ Con algunas demostraciones, explora algunos temas internos relacionados con x86, como ataques de canal lateral, ejecución especulativa y fuera de orden. 😎 Nivel de dificultad: 💾 💾 💾 💾 💾 Si te quedaste manija, mirá la charla “Exec ASLR: Abusing intel branch predictors to bypass ASLR” acá 🔥 >> https://t.co/QKWejlvWjy

0

28

12

2

10K

2

27

6

3

6K

_esoj1 retweeted

Epic Leet Team @eltctfbr

about 3 years ago

Novo artigo em parceria com @mentebinaria ! É sobre segurança de OAuth 2.0! Confiram! Está bem legal! Autor: @vrechson https://t.co/BK9X9bsrOw Toda a produção da parceria está em https://t.co/7DKFpNSHXE Se quer ler algo específico nos nossos artigos, comenta aí!

0

10

5

0

1K

_esoj1 retweeted

Jordy Zomer

@pwningsystems

about 3 years ago

Found some Spectre-v1/MDS gadgets in the Linux kernel at work with @fkaasan, including one in ‘copy_from_user’ 😁😁 https://t.co/sTdt2S1ADJ

1

64

16

11

23K

_esoj1 retweeted

about 3 years ago

Google embargo on another linux kernel issue found by @_esoj1 and I finally lifted... here is the advisory: https://t.co/ZQ9EmEvtwW

1

87

30

12

21K

_esoj1 retweeted

over 3 years ago

So, @_esoj1 and I found another linux kernel spectre v2 mitigation problem (https://t.co/nf0DjrEGKn). At this point: is there anyone who actually care? No one is testing?

1

28

8

4

6K

over 3 years ago

@csirtdf Esse artigo esta errado, eu achei a vuln com o @bsdaemon e ela não é um bypass para explorar o kernel, mas para aplicações em modo usuário protegidas pela chamada prctl (PR_SET_SPECULATION_CTRL...

1

7

0

195