Top Tweets for #hardware_security

Mr. OS @ksg93rd

4 months ago

#Analytics #Threat_Research #Hardware_Security "Security Assessment of Intel TDX with support for Live Migration", Technical Report, Feb. 2026. ]-> TDX Explore Toolkit https://t.co/qGRVo7unR0 ]-> PoC Exploits for Intel TDX 1.5 https://t.co/OnFEomJjMY // In Q2 and Q3 2025, Google collaborated with Intel to conduct a security assessment of Intel Trust Domain Extensions (TDX), extending Google’s previous review and covering major changes since Intel TDX Module 1.0 - namely support for Live Migration and Trusted Domain Partitioning (nested VMs within TDs). Revealed CVE-2025-30513, CVE-2025-32007, CVE-2025-32467, CVE-2025-27572, CVE-2025-27940, CVE-2025-31944

0

2

0

0

220

Mr. OS @ksg93rd

5 months ago

#Research #Hardware_Security "StackWarp: Breaking AMD SEV-SNP Integrity via Deterministic Stack-Pointer Manipulation through the CPU’s Stack Engine", 2026. ]-> Repo in GitHub https://t.co/3KKlVuTmFD ]-> PoC Demo https://t.co/VFEsr7vNlX // StackWarp is a security vulnerability (CVE-2025-29943) that exploits a synchronization bug present in all AMD Zen 1-5 processors

0

4

1

1

195

Mr. OS @ksg93rd

6 months ago

#Research #Hardware_Security "MicroSpark: Testing Voltage Glitches on Intel Microcode", 2026. ]-> First analysis framework for CPU microcode - https://t.co/QP80UjFvH7 ]-> lib-micro to work with 32 bit registers - https://t.co/WKe3khivcO // We present a robust and reproducible experimental platform that pairs a low-cost glitcher with a coreboot-based - https://t.co/V3HYpiPrRr environment on a "Red Unlocked" Intel Goldmont SoC. Leveraging the low-noise execution environment provided by this setup, as well as the possibility of crafting custom microcode routines due to Red Unlock, we successfully identified previously undocumented fault types, including instruction skips at both the architectural and microarchitectural levels on Apollo Lake CPUs

0

7

1

5

541

Mr. OS @ksg93rd

7 months ago

#reversing #Whitepaper #Cyber_Education #Hardware_Security "Embedded Hacking", Nov. 2025. ]-> Repo - https://t.co/n64cl5coGu // A comprehensive step-by-step embedded hacking tutorial covering Embedded Software Development to Reverse Engineering

0

2

0

1

347

Mr. OS @ksg93rd

9 months ago

#tools #Offensive_security #Hardware_Security FortiGate VPN-SSL Honeypot https://t.co/mfd4BasbCB ]-> Repo - https://t.co/viOn4gimm6 // A deception honeypot that mimics FortiGate VPN-SSL devices to trap brute force attempts, detect deliberately exfiltrated credentials for counter‑intelligence, and report malicious activity to external intelligence feeds (VT, OTX) See also: ]-> FortiGate SSL-VPN vulnerability scan/exploitation tool - https://t.co/xJ0XZ1OIrX

0

3

3

6

967

Mr. OS @ksg93rd

9 months ago

#exploit #Whitepaper #Hardware_Security "Breaking BMC: The Forgotten Key to the Kingdom", NVIDIA Offensive Security Research, 2025. ]-> Ghost in the Controller: Abusing Supermicro BMC Firmware Verification - https://t.co/rKkfWxd6Ib ]-> Broken Trust: Fixed Supermicro BMC Bug Gains a New Life in Two New Vulnerabilities - https://t.co/fZB0sTaJ66 // Analyzing Baseboard Management Controllers to Secure Data Center Infrastructure, PoCs for CVE-2024-54085, CVE-2024-10237, CVE-2025-7937, CVE-2025-6198

0

2

1

1

368

Mr. OS @ksg93rd

9 months ago

#SCA #Research #Hardware_Security "Chypnosis: Stealthy Secret Extraction using Undervolting-based Static Side-channel Attacks", 2025. ]-> An in-chip countermeasure against static side-channel analysis attacks, built for deployment in FPGAs - https://t.co/ecI64lzaDc // Static side-channel analysis exploits leakage of circuit state elements while their stored values are not changing. Typically, inducing such a state requires directly stopping the circuit input clock, however it can also be stopped indirectly by undervolting the target system or relying on clock-gating. This countermeasure serves to monitor the clock signal and upon detecting a stop condition, immediately wipe sensitive register contents in a secure manner

0

4

0

3

245

Mr. OS @ksg93rd

10 months ago

#Mobile_Security #Hardware_Security Black Hat USA 2025: "Breaking Chains: Hacking Android Key Attestation" ]-> Android key attestation library https://t.co/wM5Kg0I3iD // This presentation will take attendees on a deep dive into the Android Keystore, Android key attestation, and a litany of PKI vulnerabilities we discovered in an Android key attestation implementation, which includes the discovery of a systemic issue in Google's open source library for parsing Android key attestation X.509 certificate chains

0

10

5

5

745

Mr. OS @ksg93rd

10 months ago

#Research #Hardware_Security "FLOP: Breaking the Apple M3 CPU via False Load Output Predictions", 2025. ]-> https://t.co/EvoE85LXXc // .. we demonstrate end-to-end attack exploit chains that build on the LVP to obtain a 64-bit read primitive within the Safari and Chrome browsers

0

47

8

17

3K

Mr. OS @ksg93rd

11 months ago

#Research #Hardware_Security "NVIDIA GPU Memory Exploitation for Fun and Profit", 2024. ]-> PoC for code reuse and code injection attacks for CUDA applications - https://t.co/ccpkvKmka0 ]-> Memory Dumper - https://t.co/l4Js6ApI5r // .. due to GPU’s unique memory system, GPU programs suffer from different and more complex buffer overflow vulnerabilities compared to CPU programs. In addition, GPU systems are missing essential memory protection mechanisms. Consequently, when buffer overflow vulnerabilities are exploited by an attacker, they can lead to both code injection attacks and code reuse attacks See also: Trusted Execution Environments on NVIDIA A100/H100 GPUs - https://t.co/tZx3rRdQgx

0

13

3

5

667

Mr. OS @ksg93rd

12 months ago

#hardening #Whitepaper #Hardware_Security #TBT "Windows 11 Security Book: Security by design. Security by default", Nov. 2024. See also: ]-> Windows 11 Secured-core PCs - https://t.co/dwSOodnKKO ]-> Win10/11/2016/2019/2022 Trusted Platform Module (TPM) Settings - https://t.co/IBYZQlY1cV ]-> System Guard Secure Launch and SMM protection (Win10/11) - https://t.co/UXgXElaEJx ]-> Configure BitLocker (Win10/11/2016/2019/2022/2025) - https://t.co/mIIBz4qXwn ]-> Enable virtualization-based protection of code integrity - https://t.co/VGmh1xoKgE ]-> Memory integrity and VBS controls - https://t.co/3VYMBFvHdO ]-> Configure Hyper-V firewall (Win11 22H2) - https://t.co/lWKNSyrNnv ]-> Configure Group Policy settings for MS Defender Application Guard - https://t.co/4V3H7GSdfU ]-> Configure Win10/11 Sandbox - https://t.co/Oq8qwjCekL ]-> Deploy App Control by using Group Policy (Win10/11/2016/2019/2022/2025) - https://t.co/pCFQ3hKHYm Windows 10/11 Hardening Script https://t.co/skRskVIe5F

0

5

2

2

356

Mr. OS @ksg93rd

12 months ago

#reversing #Hardware_Security Decrement by one to rule them all: AsIO3.sys driver exploitation https://t.co/MtzFJUkWdS // CVE-2025-1533 - Asus Armoury Crate AsIO3.sys stack-based BoF + CVE-2025-3464 - Asus Armoury Crate AsIO3.sys authorization bypass vulns

0

37

10

16

2K

Mr. OS @ksg93rd

over 1 year ago

#tools #Hardware_Security Microcoding Quickstart - https://t.co/3dSRelzbrm RISC86 Programming Reference - https://t.co/62QxsUNMVU Discovering Match Registers - https://t.co/iRGw5FVsws ]-> AMD Zen Microcode Manipulation Utility - https://t.co/CzqEyACAs0

0

7

4

3

405

Mr. OS @ksg93rd

over 1 year ago

#Research #Hardware_Security "Analyzing and Exploiting Branch Mispredictions in Microcode", 2025. ]-> Structure and Binary Format of Intel Atom Goldmont Microcode - https://t.co/Sct2Pzxh23 ]-> Security Analysis of AMD Predictive Store Forwarding - https://t.co/Zdgk8UdiIM

0

17

4

5

968

Mr. OS @ksg93rd

over 1 year ago

#info #Hardware_Security #IoT_Security HardBreak - Hardware Hacking Wiki https://t.co/s7UxgKNysA

0

5

0

2

203

Mr. OS @ksg93rd

over 1 year ago

#Hardware_Security "Oreo: Protecting ASLR Against Microarchitectural Attacks", 2025. ]-> https://t.co/6G0XjHml64

0

1

0

0

163

Mr. OS @ksg93rd

over 1 year ago

#Hardware_Security "Unleashing GHOST: An LLM-Powered Framework for Automated Hardware Trojan Design", 2024. ]-> https://t.co/IH4JNNmtft

0

2

0

0

227

Mr. OS @ksg93rd

over 1 year ago

#Research #Hardware_Security "Pandora’s Box in Your SSD: The Untold Dangers of NVMe", 2024. ]-> https://t.co/p5CbJiuyqn

0

25

7

6

2K

Mr. OS @ksg93rd

over 1 year ago

#Whitepaper #Mobile_Security #Hardware_Security "When Samsung meets MediaTek: the story of a small bug chain", 2024. ]-> Samsung Mediatek PoCs // CVE-2024-20820: Read out-of-bound in ATF https://t.co/Ev8clBWOzH

0

3

0

2

279

Mr. OS @ksg93rd

almost 2 years ago

#tools #Fuzzing #Hardware_Security "RISCVuzz: Discovering Architectural CPU Vulnerabilities via Differential Hardware Fuzzing", 2024. ]-> https://t.co/AzVECxvJmi

0

2

2

1

107

Last Seen Hashtags on Sotwe

Trends for you

Most Popular Users