CVE-2021-31956: Heap Overflow => LPE in ntfs.sys
Massive credits: @d0lph1n98
Looking forward to part 2 of the blog to defeat LFH randomization @alexjplaskett
A few months ago, 8 vulnerabilities were disclosed for grub. I found 2 of them -- and a number of other crashes -- by fuzzing grub.
Part 2 of my blog series is now live, talking about how to fuzz grub faster via AFL++ instrumentation and tweaks: https://t.co/jaAftX1Kh1
#BREAKING: Dutch police are clashing with anti-#lockdown protestors in #Amsterdam and #Eindhoven. Police are using water cannons to disperse protestors.
Reverse Engineering The Saboteur game for Xbox360 with Linux (Part 3) : https://t.co/3XcjPVeFQD
Part 2 : https://t.co/pWt78LID2x
Part 1 : https://t.co/YBbgQpwCco credits : @Mte90Net
I and @rootxharsh found and exploited a 0Day RCE in Apple's Travel Portal and were rewarded with $50K. Here's the write-up for that:
https://t.co/zMpw2QOEvP
I started reversing Apple AMX, an undocumented 64-bit ARM instruction set extension for a matrix coprocessor, used by the Accelerate framework on the M1 (and A13+). My (incomplete) IDA/Hex-Rays plugin and notes so far: https://t.co/XveVRLokr3
I made a Chrome extension that abuses Trusted Types to find DOMXSS! It works by logging the stack trace of all sink calls and their changes to the DOM. It helps you trace from sink to source and source to sink.
https://t.co/Cj6AdIs2Z0
I'm looking to hire new PhD students and postdocs interested in system security, program verification, or computer architectures with focus on microarchitectural attacks/defenses. Positions will officially open in the next few weeks. Contact me directly if you're interested!