Thankfully I was still able to find something 😖

Hopefully I will qualify

In Vmware Workstation 17.5.1, a bug was silently patched, I was going to use it for Pwn2Own but i think that I probably found the same bug that was used in TFC 2023... :( @vv474172261, is there a way i can confirm this with you ?

Slides of our latest talks during #GreHack23 and @codeblue_jp are now available on our website! https://t.co/z9jtXbLcjl

Will still try to do a blog post on my @CSAW_NYUTandon CTF challenge, NERV Center, but for now here's a thread explaining the key mechanics. I put a lot of work into the aesthetics, like this easter egg credit sequence (all ANSI colors+unicode text) that contains key hints:

- Writes shitty Hypervisor fuzzer as an example for someone junior - Runs shitty fuzzer against VirtualBox - Finds 0-day... It was a few hours of effort? In an attack surface that already had a 0-day a bit ago? Incoming blog for fun 🙃

got hard carried by amazing teammates at @vcslab

Nice play. #Pwn2Own #Xiaomi13Pro

Success! Team Viettel was able to execute an OOB write against the Sonos Era 100. They earn $30,000 and 6 Master of Pwn points. #Pwn2Own

Research] NewJeans' Hyper-V Part 2 - CVE-2018-0959 Analysis(1) Part 1에서 다룬 Hyper-V 아키텍처에 이어 Part 2에는 CVE-2018-0959을 분석한 내용을 담았습니다! 이번엔 코드가 좀 많으니 긴장하라구?... https://t.co/D34SvJKXw1

I have finally found my favorite blog post about bug bounties:

Success! dungdm (@_piers2) of Team Viettel (@vcslab) used an uninitialized variable and a UAF bug to exploit Oracle VirtualBox. They earn $40,000 and 4 Master of Pwn points. #Pwn2Own #P2OVancouver