iykyk

Happy to support the very best. We’d be there at OffensiveCon, yet again!!

Happy to sponsor @nullcon We are hiring for multiple positions, DM us and we would love to meet you at #Nullcon2025

Come see us at #BHMEA24 at the @DSCI_Connect India Pavilion - H1 T91 We are showcasing are Next-Gen Mobile Forensics Platform!

We have a spare #37c3 pass. If anyone is interested, please feel free to DM! #37c3 #ChaosCommunicationCongress

😎We are excited to Welcome back our sustaining sponsor Secfence @secfence as 🎴Lanyard Sponsor Stay updated here ➡️ https://t.co/kqTyO6rNqw #NullconGoa2023 #Infosec #Conference

Let’s catch up! :)

We’re at #Zer0Con2023! Come say Hi!

Always happy to support exceptional research & talent! We will be there, let’s meet up :)

We’ll be at @hexacon_fr, Paris. Come say Hi! We’re hiring for full time/contractual positions.

I’m attending, would love to chat about most things infosec DM to meet up :)

Proud to sponsor @nullcon We're here, DM to meet us. We're hiring too!

Popping shells @defcon. More than 20 vendors affected to an RCE in the network stack. Do you know what does your router is running? https://t.co/Ip1lG0CxKf

Windows: Credential Guard Domain-joined Device Public Key EoP

The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I)

New blog post for HInvoke. It allows calling .NET runtime functions or accessing properties using only hashes as identifiers. Reducing obvious identifiers for analysts. Post also includes a little trick to avoid using PInvoke. https://t.co/thYuk3NoQ5

Just like Spaghetti code

Proud of our continued support to the OG Indian infosec conference 🤟🏻

This is probably the most complex exploit I've done so far. A UAF in Android kernel freed by kfree_rcu (introduces a delay) in a tight race + kCFI + Samsung RKP. Yet its still possible to gain arbitrary kernel RW, disable SE and root from untrusted app.

Dirty Pipe PoC ( https://t.co/ql5Y8pWDBj) works beautifully. 🤑