@Peterpan980927
Followers
2K
Following
847
Media
21
Statuses
391
Mobile Security Researcher @starlabs_sg
EL1
Joined May 2017
RT @hhj4ck: ✅ Just wrapped up my deep-dive on exploiting an unfused Qualcomm QCM2150 POS device (BootROM → root). .
hhj4ck.github.io
Background
0
30
0
RT @starlabs_sg: Reverse engineering Google's undocumented DSP pays off! Our co-workers @st424204 & @Peterpan980927 found the first public….
hitcon.org
Last year, we uncovered the first publicly known security vulnerability in Google's proprietary Digital Signal Processors (DSP) embedded in the Pixel 8. This processor was previously undocumented and...
0
43
0
RT @WangTielei: Just finished a new blog sharing an interesting example demonstrating the power of cross-operating system vulnerability var….
github.com
slides for conference talks. Contribute to wangtielei/Slides development by creating an account on GitHub.
0
29
0
RT @cor_ctf: Here is our 0day for kernelCTF🩸.- 82k bounty.- quickest submission ever.- all instances pwned😎. Discl….
syst3mfailure.io
CVE-2025-38001 is a Use-After-Free vulnerability in the Linux network packet scheduler, specifically in the HFSC queuing discipline. When the HFSC qdisc is utilized with NETEM and NETEM packet...
0
74
0
RT @nyan_satan: Apple T1 debug. There is an internal macOS Sierra build in the wild (Phoenix A1708.dmg). Load AppleAstrisGpioProbe kext fro….
0
3
0
RT @starlabs_sg: When life gives you tangerines🍊.Intern Lin Ze Wei's task: Port a 2-bug exploit to Pixel 6 Pro.Problem: One bug "doesn't wo….
starlabs.sg
During my internship I was tasked to analyze a Mali GPU exploit on Pixel 7/8 devices and adapt it to make it work on another device: the Pixel 6 Pro. While the exploit process itself is relatively...
0
38
0
RT @starlabs_sg: After 6 months of responsible disclosure, proud to announce our team discovered 13 (mostly exploitable) vulnerabilities in….
semiconductor.samsung.com
Samsung semiconductor values product security. Check out the latest product security update at Samsung Semiconductor Global.
0
22
0
RT @ProteasWang: `CVE-2025-24203`: hierarchy of vm_object_t when changing `MAP_SHARED` to `MAP_PRIVATE`. The topmost object has its own phy….
0
16
0
RT @epsilon_sec: About to celebrate Easter with your family but don't know what to talk about at the table?.Then don't lose time and read o….
0
35
0
RT @SpecterDev: I've published a write-up on reversing and analyzing Samsung's H-Arx hypervisor architecture for Exynos devices, which has….
dayzerosec.com
In many ways, mobile devices lead the security industry when it comes to defense-in-depth and mitigation. Over the years, it has been proven time and again that the kernel cannot be trusted to be...
0
114
0
RT @sagitz_: ICYMI, #Pwn2Own will have an AI category this year! Looks like our team has already pwned 2 of these targets👀. Ollama CVE-2024….
wiz.io
Critical severity vulnerability (CVE-2024-0132) affecting Container Toolkit and GPU Operator may present risk to cloud service providers
0
15
0
RT @j_duffy01: 🚀 Technical Analysis! Just published my analysis of how a faulty GIF leads to a DoS condition in Apple’s iWork Suite on macO….
0
14
0
RT @0xjprx: CVE-2025-24118 is an absolutely crazy race condition I found in the macOS / XNU kernel. Safe memory reclamation, read-only obj….
jprx.io
A crazy race condition in the XNU kernel.
0
84
0
RT @__nightu__: While preparing documentation for a kernelCTF submission, I took several notes on SLAB_VIRTUAL. After fixing some(actually….
github.com
This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code. - nightuhu/security-research
0
17
0
RT @v4bel: I just released our kernelCTF VSock 0-day write-up with @_qwerty_po . (exp196/exp197, CVE-2024-50264). W….
0
96
0
RT @08Tc3wBB: iOS 17 PoC, Here’s how u can leak any iCloud app data by copying and pasting two completely unrelated files. .
jamf.com
Jamf discovered a vulnerability that affects iOS and macOS users that is capable of stealing data from iCloud, bypassing TCC protections.
0
28
0
