Olivia
Online
splitline 👁️🐈⬛
@_splitline_
友民党 / CTF with ${cYsTiCk} / @D3VC0R3 / Tâi-gí, zh-TW, en-US, es-PY / 🐈⬛
Tsu-lô-Kuān, Formosa
Joined July 2019
607 Following
1.8K Followers
347 Posts
阿迪的“进城办事”彻底火了!
起因是,阿迪天猫店里一件夹克的介绍里,原本英文的“running errands in the city”,不知道运营用了哪家的AI,给翻译成了“在城里办事”
结果,商品介绍就成了:“穿上这件adidas外套,搭配T恤去健身房,或者搭配牛仔裤,在城里办事”。。。
然后,这个在城里办事就被各种玩梗,成了全网狂欢。
Adidas官方也不甘示弱,直接出了“进城办事”T恤,把adidas几个字母都给换成“进城办事”了😆
That's a wrap on Pwn2Own Berlin 2026! 🏆 $1,298,250 awarded. 47 unique 0-days. 3 days of absolute chaos. And talk about main character energy - congrats to DEVCORE for claiming Master of Pwn with 50.5 points and $505,000 - they never slowed down. See you next year! #Pwn2Own #P2OBerlin
Booyah it's been confirmed! 🎉 splitline (@_splitline_) of DEVCORE Research Team chained 2 bugs to exploit Microsoft SharePoint, earning $100,000 and 10 Master of Pwn points. Massive aura farming this year at #P2OBerlin. Full win! #Pwn2Own
pure logic bug chain to pwn browser
no memory corruption
found without AI assistance
🍊 is built different omg
Confirmed! Orange Tsai (@orange_8361) of DEVCORE Research Team (@d3vc0r3) chained 4 logic bugs to achieve a sandbox escape on Microsoft Edge, earning $175,000 and 17.5 Master of Pwn points. Full win! #Pwn2Own #P2OBerlin
Honestly, with a little LLM help, I found variants, built a working PoC, and sent a polished patch to maintainer on the same day CopyFail dropped. So I’m curious why Xint didn’t find those variants before disclosure, assuming AI tools are used heavily in their workflow👀
Disclaimer: I’m an independent reporter and the patch author of the xfrm-ESP vulnerability, unrelated to the Dirty Frag post.
@_L4ys escape the matrix
is there any cool non-frontend web ctf challenges this year that aren't llm-solvable 👀
@yuzhinok Three hundred and three
@guttapercha80 @MeeRebus11 @danieleskay However the traditional international name for this island is Formosa, while the ethnic name used by Hokkien-speaking ppl on the island is Taiwan.
Yes, even in many Indigenous langs. For example, Amis, which you mentioned we are also called taywan
Historical issue is complicated
And this makes sense given how many CTFs are held per year.
However, the ideal CTF challenge, in my opinion, should follow this formula:
"The author conducted a mini-research project and instead of publishing it, turned it into a challenge."
What I’ve always found amazing about CTFs is that "flag is flag". Whether you found an unintentional solve or pwned the browser with n-day for a XSS challenge, it didn't matter.
I totally get the frustration of AI, but there is no solution other than accepting the change.
A POC for CVE-2025-55182
https://t.co/BcyJ1UbivA
A bit late, but I just published my blog post on bypassing Ubuntu’s sandbox! Hope you enjoy it!
https://t.co/Q9Nra9n6N0
The blog post is the full version of my talk at 38c3.
It's about some vulnerabilities we found in libarchive and some interesting behaviors of libarchive that you don't want to miss.
My favorite part is it only took us 56 seconds to trigger a crash by AFL++.
@dicegangctf @strellic This is just a rumor to make themselves feel better, CTFers doesn't have life and probably all single
🤘Congrats Orange(@orange_8361) and Splitline(@_splitline_) on making it to 2024 Top 10 Web Hacking Techniques!
Check out their groundbreaking research: https://t.co/4zF90JZql9
I will drop one web challenge there 🐈⬛
@TalBeerySec @orange_8361 @BlackHatEvents I read that before, it was quite interesting!
You’re right. Unicode normalization has always been a security concern, but I wouldn’t call it the core issue here. For me the root cause is still “Best-fit”. Unicode normalization is more of a broad bug category, like “injection”
🍊 pumped my followers to 1k
Last Seen Users on Sotwe
Serkan
Seen from Germany
HotPowerBottom
Seen from Egypt
Penikmat Turokss
Seen from Indonesia
Maxi Tassi OnlyFans 600 K+🔞
Seen from Dominican Republic
Arewa Babies
Seen from Nigeria
doja doja
Seen from Indonesia
hồng hài nhi k12
Seen from Germany
istanbul beyi
Seen from Turkey
coklatice
Seen from Indonesia
Bananaboi_90000
Seen from Germany
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers