I will be in Riyadh for the BlackHat MEA CTF finals. If you're there as well, ping me. I would like to chat with CTFers, or anyone interested in cybersecurity, in person. Exchanging ideas is always fun
Learning how to exploit DirtyPipe vulnerability in Linux kernel (@0xnull007 and @stdnoerr)
https://t.co/0gQj0RkrY3
https://t.co/MdDPrfmweU
#infosec#Linux
@0x_shaq Yeah man. You have left CTFs for a while but those were the days. Full on action. I actually liked a lot of your tweets since you OS dev brainfuck journey lol
Lets catch up sometime
@h0mbre_ I don't know if someone mentioned this or not but this blog by @benhawkes addresses this problem by comparing the vulnerability with other similar vulnerabilities and proving them to be members of an "equivalence" class.
https://t.co/lCTziayo8y
played BlackHat 2024 Qualifiers with AirOverflow. Didn't get much time but managed to solve one challenge. Here's the writeup for the one I solved.
P.S. I'm in Riyadh for the Finals. If you're there as well, feel free to hit me up
https://t.co/oivCOQYznO
#BHMEA24
I was trying to write an exploit for CVE-2023-32233 last summer. It was my first exposure to the netfilter subsystem and race conditions. Had to give up when university started. I thought I would continue to try in my free time. Never did. 1/2
Today I opened the poc I was trying to write and I couldn't understand what I was trying to attempt🫠, got rusty on Netfilter internals and never documented the manual steps of debugging (was using ftrace to tame race condition).
Lesson learnt: ALWAYS document and take notes 2/2
Played #corctf last weekend with @ARESxCTF. Here is my writeup for zeroday, kcipher and smm-diary. On kcipher and smm-diary I worked together with my teammate @stdnoerr :).
https://t.co/W5nhnIiL2Y
corCTF 2023 has ended🥳- thanks to all the players and our wonderful sponsors! We hope everyone had a great time!
Congrats to the top 5 teams:
1. @Water_Paddler
2. @CyberTeamItaly
3. cat🇰🇷
4. @0rganizers
5. @r3kapig
See you all next year!