My blog post is now live alongside @amnesty 's joint release, providing remarkable insight into an ITW exploitation campaign!. Turns out that you can find out quite a bit with just some kernel stacktraces ;). From Amnesty:.

RT @h0mbre_: Linux kernel: a new feature has landed in this release.Jann Horn:

Blazing-fast image creation – using just your voice. Try Grok Imagine.

So did y'all know that in arm64 Linux kernel (including Android) there is a 1:1 linear mapping of physical memory at a static non-ASLR'd virtual address?. Given a physical address you can calculate the corresponding virtual address. Anyway, happy Friday.

RT @natashenka: While most vendors ship timely patches for vulnerabilities reported by Project Zero, they don’t always reach users. Today,….

RT @sundarpichai: New from our security teams: Our AI agent Big Sleep helped us detect and foil an imminent exploit. We believe this is a f….

RT @GoogleVRP: It is time to separate the vibe hackers 🤖 from the hackers with vibe 😎. Google CTF June 27-29. Age….

Just derestricted an issue in the Qualcomm fastrpc driver! All phones running SPL 2025-06-06 should be fixed.

RT @linkersec: Android In-The-Wild: Unexpectedly Excavating a Kernel Exploit. Talk by @__sethjenkins about analyzing the traces of an In-Th….

RT @natashenka: The final part of @j00ru’s Windows Registry series is live! Contains all the hive memory corruption exploitation you’ve bee….

Unfixed kernel pointer leak derestricted:.

My OffensiveCon talk, Unexpectedly Excavating an ITW Exploit, is now available to watch!.

RT @offensive_con: "Android In-The-Wild: Unexpectedly Excavating a Kernel Exploit" by @__sethJenkins

RT @dillon_franke: Thrilled to announce my new Project Zero blog post is LIVE! 🎉 I detail my knowledge-driven fuzzing process to find sandb….

My upcoming conference attendance schedule:.Qualcomm Security Conference (speaker): May 7-9.Meta Bug Bounty Researcher Conference (attendee): May 13-14.OffensiveCon (speaker): May 16-17. Come find me at any of those places, but be warned, I will be extremely jetlagged 🤣.

I'm happy to announce that I'll be speaking at OffensiveCon 2025 on May 16th! See you there :).

CVE-2024-49848 is now fixed. 255 days after I reported it!. Sure it took well over 90 days, but on the OTHER hand it's an aesthetically pleasing number of days.

Derestricted this bug too. an LPE attack surface one remote bug away from being touchable. It's a pretty nice UAF actually.

RT @i41nbeer: My writeup of the 2023 NSO in-the-wild iOS zero-click BLASTDOOR webp exploit: Blasting Past Webp -.

Just derestricted a bug in the Qualcomm NPU used in Android chipsets. Glad to say that this issue is already fixed in the March 3rd Qualcomm bulletin, although it's not in the Android security bulletin yet.

RT @AmnestyTech: 🚨BREAKING: @Amnesty has detected a new case of misuse of Cellebrite against a youth activist in Serbia. Just two months….

RT @ifsecure: I tweeted before about the Apple CoreAudio issues found by Google TAG. Well, the fuzz harness used to find these issues is no….