A bit late, but here's the talk I gave last year at CODE BLUE and HITCON, about the 20+ Trend Micro Apex One LPE that @0x000050 and I disclosed. https://t.co/EPlvjWSjzO

I've been working on a side project for some time: autonomous reverse-engineering powered by Gepetto. I shared some thoughts here ( https://t.co/EDHsSUWbQC), and am looking for beta testers to try out the platform. DM me or reply below if you are interested!

How was a single heap overflow in an Audible parser enough to compromise an Amazon account? Find out in our latest blog post, in which we break down the Kindle vulnerabilities we reported earlier this year. https://t.co/v524qgdJca

We're back, baby! This time with 19+ bugs I reported to MediaTek over the past year + PoCs for each one! I'll also tell you a *fun* story about MediaTek's "creative" impact assessment process. They earned a spot on the naughty list this year :) Check it ⬇️

The slide from my Pwn2Own QNAP NAS talk at AVTOKYO2025 was published on 11/26. But Ryuokyo Canyon was so beautiful that I completely forgot to post about it on X 😅. You can find the slide on the AVTOKYO website: https://t.co/R8hCyV2Sdl]

An analysis of a recent 0-click exploit targeting Samsung devices: https://t.co/ChQTJY16QJ

All the bugs used for winning this were found with @theori_io 's fully automated security analysis tools (just upload code and get bugs!). For interested folks, check out https://t.co/vwMM9XJcAT 🤖💪

My research regarding .NET Framework HTTP client proxies and WSDL imports just dropped. Long story short: those proxies can be forced to write HTTP body to the local files, instead of sending them over HTTP. Leads to shells 😅

A POC for CVE-2025-55182 https://t.co/BcyJ1UbivA

Over the weekend I wrote up a post about some weaknesses I identified when looking at LINE cryptography on Android 🤖🦃 Attacking LINE Cryptography for Fun and .. Forensics -> https://t.co/ONzj6gZgRs

My HEXACON talk video is out! It covers a small race condition in the Linux kernel’s io_uring. I recommend watching it at 1.25× speed since I’m still not great at speaking 😅 https://t.co/lMuweA7PyU Here is the slide! https://t.co/9jPoKMzxwL

Our research on AuthToken is now public. 🔓 Cracked Android lockscreen passwords on 8 phones from 7 vendors, and bypassed Gatekeeper & Credential Encryption. 📘 Slides are public and welcome discussions! ✍️ Blog is on the way. 💡Follow @DarkNavyOrg for more updates.

I've uploaded the slides of my recent talk "JS Engine Security in 2025": https://t.co/1znTdICVmY. I think there'll also be a recording available at some point (otherwise I can make one as not everything's in the slides). Thanks for the fantastic conference @POC_Crew!

Been waiting for this for so long... now we have Plugin Manager and officially built BinDiff/BinExport for 9.2 My suffering has ended.

I’ll be at CODE BLUE tomorrow. Check out our Cyber Range Exercise if you’re interested, and feel free to come say hi if you want to chat https://t.co/PMyIoD16O0

I am the main developer fixing security issues in FFmpeg. I have fixed over 2700 google oss fuzz issues. I have fixed most of the BIGSLEEP issues. And i disagree with the comments @ffmpeg (Kieran) has made about google. From all companies, google has been the most helpfull & nice

Windows: Administrator Protection Kerberos Certificate Authentication EoP

Windows: Administrator Protection DOS Devices EoP

@__sethJenkins broke kASLR by doing … nothing 😩 https://t.co/hxPzVTC1RN

It’s time to publish the blog post about the bug that won at P2O Berlin 2025. Enjoy! With this post, I mark my last moment as a researcher at @oobs_io. I’m moving on to a new place for a fresh start.🔥🦎 https://t.co/PAdwKgeHuL

CVE slop