Olivia
Online
Bonfee
@Bonfee1
Security researcher | CTF @aboutblankets
EL3
Joined December 2020
264 Following
795 Followers
28 Posts
Pwners in Paris
Hi @discord! We are hosting @ecsc2024 right now and we have our IP banned, we opened a ticket without answers, can you please write us? DM or [email protected] ⚠️
Cool kernel pwn challenge from corCTF 2023, CVE-2023-0461 + kCFI + limited set of available syscalls
Who to follow
Crusaders of Rust
@cor_ctf
A European and American Security Research Group
Linux Kernel Security
@linkersec
Links related to Linux kernel security and exploitation.
Maintained by @andreyknvl and @a13xp0p0v.
Also on https://t.co/GVE11dpBb8 and https://t.co/YpxPWXnA6Z.
Bien 🇻🇳 
@bienpnn
A weeb that loves crashing software | @qriousec & @seasecresponse & @ProjectSEKAIctf | アイマス最高 | @rinka_linca 推し
🚩
Lets go 🔥 awesome sleep deprivation weekend 😂
GG WP! 2nd place at @hack_a_sat 4 w/ @mhackeroni and @aboutblankets ❤️🇮🇹🛰️ now onto hacking a real satellite I guess :')
@hexacon_fr was amazing, congrats to the organizers :)
The challenge was awesome, especially the Hyper-V VM escape part
See you in Paris 😄
Since we are on the home stretch, we will close the challenge on the 7/10/2022 at 20:00 GMT so you'd better hurry😊
We also have our first winner in the student category: @Bonfee1! A big shout out to him, he won fair and square his entry to Hexacon and hotel stay!
#HEXACON2022
The bug was assigned CVE-2022-0995. Here is the exploit: https://t.co/zwQ20QOSJH.
1 bit oob write is all it takes :)
@BruteBee It's not that one :)
Another Ubuntu 21.10 LPE :)
This bug doesn't even have a CVE yet. To pwn it I used the same technique described here: https://t.co/zSl67mBPm9.
I'll clean the code just a bit, before releasing it
@alexjplaskett Nope :)
@clubby789 yep, it was introduced in 5.x
( Just to be clear, this is not a 0 day, i only saw the commit fixing the bug and developed the exploit for it. )
@raesene @Terenceliqiang With the proper ropchain yes. If you are talking specifically about google kctf, then no because the kernel is compiled without the required CONFIG_ :(
CVE-2022-25636 exploit - LPE on Ubuntu 21.10, using the FUSE technique ( which i first saw from @cor_ctf ).
I also developed an exploit which is not using FUSE, but for now: https://t.co/dK1FowNcOG.
I'll soon publish a writeup with the exploitation details.
It finally arrived :)
Last Seen Users on Sotwe
โกคู
Seen from Thailand
ഉണ്ണിക്കുട്ടൻ
Seen from India
Carol
Seen from United States
Tuấn Anh 🇻🇳
Seen from Vietnam
สาวใหญ่
Seen from Thailand
Yağız Sabuncuoğlu
Seen from Turkey
The Living Toy
Seen from Germany
suka bahan nerawang
Seen from Indonesia
Emilia Vizcarra
Seen from Mexico
Lucile 🍑
Seen from France
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers