Olivia
Online
Tanic
@tzachyh
Curious, breaking stuff apart, failing my way through life, opinions are of one of the aliensrrr on Omicron Persei 8, where did I put my keys?
Joined November 2018
96 Following
37 Followers
72 Posts
After two years of research that started at @alephsecurity and ended at @CyberarkLabs, I'm very excited to present my research on attacking ISPs via layer-2 PPPoE protocol live at @defcon!!!!
#defcon #defcon30 #pppoe #ppp @CyberArk
https://t.co/xZBjTjmCtZ
I am releasing some of the stuff I have been working on, on side branches as the work is not complete and still pretty raw. This is in case anyone wants to use it as is or continue to work based on this.
#Ruckus has confirmed six additional CVEs for my latest research. I will present new RCEs on Ruckus devices using these vulnerabilities at #defcon28 #DEFCONSafeMode
After a long wait, my 2nd blogpost on Homograph attacks. Specifically, bypassing chrome's IDN policy.
After some delay, here's the 2nd part of our Homograph research in which we show how we bypassed browsers IDN policy and take a deep dive into Unicode definitions.
https://t.co/Ob42I9hpLd
Who to follow
Atredis Partners
@Atredis
Atredis is a 100% worker-owned team of world-class security researchers and consultants. We do risk-centric, research-driven security testing and consulting.
Nicky 
@Nickycc_
LLMs & Agents security researcher of Tencent Zhuque Lab . Speaker of Black Hat & DEFCON. Building A.I.G (AI-Infra-Guard).
Dao
@MagkDao
A researcher doing LLM4Sec + Security of AI/Blockchain/Mobile. Detected many blockchain/contract/Android vulnerabilities.
Small @GHIDRA_RE script that colors executed instructions to ease the debug procedure. Hope soon will add regs state to it :))
https://t.co/QHnVrdx8Pj
There is an open position for a senior researcher on my team (located in Herzliya). Please contact me if relevant. @alephsecurity
@offensive_con has been amazing! Truly the best conf I have been to. A special thanks for having the opportunity to present the research #iOS on #QEMU that me and my team were working hard on. The slides and the code with the new features are now released. Enjoy!
Continuing the iOS exploit development series:
Part 1: Heap Exploit Development: https://t.co/vtvfasQlie
Part 2: Heap Overflows and the iOS Kernel Heap https://t.co/DdDynOqh2G
✨NEW: Part 3: Grooming the iOS Kernel Heap https://t.co/OA5jBgcrIM
#INFILTRATE20 Speaker Highlight: Jonathan Afek (@JonathanAfek) will be presenting 'Simplifying iOS Research: Booting the iOS Kernel to an
Interactive Bash Shell on QEMU' https://t.co/RPFj4KDr6R
Windows / Linux Local Privilege Escalation Workshop (Materials included !) 🥳
https://t.co/7B3ZXVoFGh
Did you know that the address '<[email protected]>[email protected]' when given to SES will send an email to [email protected]? this could lead to interesting exploit scenarios with some email parsing libraries/code https://t.co/alq065VFn5
I wrote some automation around gophish, evilginx2, and postfix for faster phishing deployment. Looking for feedback and pull requests :D
https://t.co/Oz7A6CJTNa
https://t.co/w6ZmqDp5xY
Can't wait to present the progress we've made since #BHEU at @offensive_con! tfp0, full disk mounts with our own block device driver, most of the iOS services running, ssh and a textual framebuffer. #offensivecon
Can be really helpful indeed
Ghidra Script that sets the names for missing function names by looking for relevant patterns in the binary!
Hope that will help you too :)
https://t.co/yvEFtWMiPp
@juliocesarfort @alephsecurity BTW, this research has started at the beginning of 2019 so I didn't have some of the references that available today.
@juliocesarfort @alephsecurity Just saw your presentation, great work! Regarding the Australian paper, I couldn't find it, do you have some reference to it by any chance? Also, the references are in the links.
Part of my latest research, check it out:
Phishing is anyone's problem, but now it can get you in ways you didn't expect and for many users, no proper mitigation is currently available. Check it out: https://t.co/4vPNoK2X04
➦ 36C3 - SELECT code_execution FROM * USING SQLite;
»
https://t.co/xcWKS8rXrH
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.4M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87M followers
Taylor Swift
@taylorswift13
80.9M followers
Lady Gaga
@ladygaga
72.4M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
68.9M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.5M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.1M followers