Niklas B
@_niklasb
Followers
15K
Following
6K
Media
65
Statuses
3K
We at @dfsec_com are currently looking for a senior Linux kernel researcher, feel free to DM if you’re curious :)
1
29
95
Our newest @dfsec_com blog post is live, thanks to @tomitokics from @df_forensics for putting this together :-) https://t.co/JoJfTOOXzV
blog.dfsec.com
Dataflow Security blog
0
37
157
DMs were apparently disabled, but fixed now
We at @dfsec_com are currently looking for a senior Linux kernel researcher, feel free to DM if you’re curious :)
1
1
12
AKA natural language CodeQL - it feels like the Code Browser approach from the blog post may be applicable here as a general concept
0
0
6
This is very cool work. Since I’m not super familiar with the domain, is there any published work around code understanding/querying? Is context size a limiting factor here for non trivial code bases?
New Project Zero blog post by Sergei Glazunov and Mark Brand: Project Naptime: Evaluating Offensive Security Capabilities of Large Language Models
4
1
14
Pwn2Own lineup looks very impressive this year, good luck to everyone!
1
0
40
Software transactional memory is probably the one thing I miss the most from my Haskell developer times. IMO it is the most intuitive way to write concurrent code by far. It‘s wild to see it implemented in such a complex context as C++, amazing effort
I wrote a blog post about C++ transactional memory.
0
1
15
Are there any details known about what makes a WiFi “unsafe to join” according to iOS Lockdown Mode and thus causes disconnects on each sleep/wake cycle of the phone? Seems like WPA support and TKIM are two such properties, but there are likely more.
2
1
13
I’ll be at C3 this year if anyone wants to discuss security research or meet up in general :)
4
0
26
It could be used as SMAP bypass and also to defeat ASLR across tasks (usermode and kernel)
1
0
13
A new post by our iOS research team is up about an interesting info leak that died an untimely death
After 3 years, we finally managed to write our first blog post about a powerful XNU infoleak patched in 17.1 https://t.co/f3mZjw43qZ
2
15
82
🤦♀️
Due to high demand on the market, we're increasing payouts for top-tier mobile exploits. In the scope: — iOS RCE/LPE/SBX/full chain — From $200,000 up to $20,000,000 (twenty millions). — Android RCE/LPE/SBX/full chain — The same. As always, the end user is a non-NATO country.
1
1
17