nu1lptr
@_4bhishek
Followers
356
Following
2K
Media
8
Statuses
198
OnlyWindows
VTL 1
Joined June 2022
This month MSRC fixed my Windows Defender info leak vulnerability CVE-2025-62468, but all acknowledgments are incorrect. First, I provided a working exploit, so it’s not “exploitable unlikely.”😅 https://t.co/TXNxu8XPjU
5
15
176
Releasing a 3 linux kernel bugs chains to do secure comm app using side channel to establish key and establish covert channe: CVE-2023-1206+CVE-2025-40040+CVE-2024-49882 https://t.co/PklpQLbjrZ Anyways a little thread about this later this week :1/n
3
15
101
Confidence from the first principles https://t.co/TSVrxnIFa8 A hacker’s systematic perspective on how genuine confidence works - and how to build it
0
7
64
It’s time to publish the blog post about the bug that won at P2O Berlin 2025. Enjoy! With this post, I mark my last moment as a researcher at @oobs_io. I’m moving on to a new place for a fresh start.🔥🦎 https://t.co/PAdwKgeHuL
oobs.io
A deep-dive technical analysis of CVE-2025-50168, a Windows kernel vulnerability (Type Confusion in DirectComposition) presented at Pwn2Own Berlin 2025. This post details how a 4-byte OOB write is...
1
62
189
Technical deep-dive into CVE-2025-53149, a heap-based buffer overflow in the Windows Kernel Streaming WOW Thunk Service driver (ksthunk.sys). https://t.co/KJ08k0EHKm
crowdfense.com
Technical deep-dive into CVE-2025-53149, a heap-based buffer overflow in the Windows Kernel Streaming WOW Thunk Service driver (ksthunk.sys).
0
36
119
Some of my bugs are patched in this month's patch tuesday, including the ones I used for Pwn2Own Berlin 2025. CVE-2025-50167 Race UAF in Hyper-V
9
37
386
My first Pwn2Own 2025 Berlin vulnerability has finally been patched! Curious about how I exploited it? Keep an eye out as I’m preparing a blog post! https://t.co/FGngXd0Lyq
3
11
124
Inspired by @__sethJenkins's cool research on the adsprpc driver in Android, I took a deep dive into the codebase and documented the internal workings of the @Qualcomm DSP Kernel Driver (FastRPC implementation). Blog:
streypaws.github.io
In depth internals on Qualcomm DSP Kernel (FastRPC implementation)
1
38
114
Small teaser , location is Timisoara, Romania but venue is not yet decided till I have all the people confirmed :) please register only if you consider coming physically . it's just one stage no qualifier. More to be revealed soon :)
16
9
32
[Research] CVE-2025-24985: Windows Fast FAT Driver RCE Vulnerability https://t.co/N0ttHnqTe1 The vulnerability was caused by the ability to control five variables within the VHD file that determine the number of clusters.
2
39
110
This is an analysis of a recent clfs nday bug exploited ITW by Storm-2460, analyzed by my other intern. Hope you enjoy the post🙌
CASE CLOSED: CVE-2025-29824 0 public samples, 0 information Suspect: Windows CLFS driver Crime: UAF leading to Privilege Escalation Status: ACTIVELY EXPLOITED ITW Investigation: Debugged and documented Case files: https://t.co/Ig6RbvhLmZ Done by our intern, Ong How Chong
1
9
63
Inspired by @ret2happy's excellent @BugsAggregator, I built a simple tracker for recent Chrome Releases that automatically identifies the patch commit for undisclosed issues. Blog: https://t.co/RzK53rK2Qc Tool:
0
5
36
created a X community let's see how it goes. if you don't share this to at least 3 people you'll have bad luck https://t.co/Vr9lah5Lr8
twitter.com
it’s not segfault, it’s your fault 🫵
3
6
18
Built/ordered my first PCB! Make a little base health counter for Star Wars Unlimited.
blog.c0nrad.io
A new electronics project! It’s a simple circuit that just keeps track of base health for Star Wars Unlimited (SWU) trading card game. This was my first time making/ordering a PCB, and I learned a...
0
1
3
