RT @trailofbits: We reported a chain of CVEs to Apple, reviewed anti-cheat measures for ~5M Monopoly GO! players, and published the Custodi….

We also added portable one-liner installers:.$ curl -qsL ' | sh -s -- -t pwndbg-gdb.$ curl -qsL ' | sh -s -- -t pwndbg-lldb. Working with both Linux and macOS (note: pwndbg-gdb on macOS only allos for remote debugging of ELFs).

We released new Pwndbg: !. It brings new kernel commands for dumping heap allocator info, display of not taken branches (X marker) in disasm, better disasm for ARM/MIPS/LoongArch64, initial s390x support & more!. Sponsor us at !

I will be giving a talk on Pwndbg open source development in ~1h on a local Python meeetup!. It will be livestreamed on:

RT @patryk4815: Here’s the new Pwndbg release: 2025.04.18 🎉. My recent work includes: .🔸 knft-dump — command for dumping internal nftables….

Released new Pwndbg: 2025.04.18. It adds display of breakpoints in the disasm view, new libcinfo command, improves attachp & hexdump commands, UI, TUI and more. Also, command names use "-" istead of "_" now for consistency. Read more and download it on !

RT @tjade273: Do you want to see the hottest new cryptography before it launches? Attend all the best conferences? Never write another gran….

Fwiw this may matter a lot during binary exploitation. This was important in a challenge from PlaidCTF 2025. E.g. passing a negative (or: very huge) length allowed you to write past a buffer without a crash (the given implementation was not doing a wild copy).

A call to memcpy() in a single binary that uses glibc may behave in 12 different ways depending on the features of the specific x86-64 CPU you run it on. Here is a list of those impls in glibc:.

We scored 1st place in the DiceCTF 2025 Quals cybersecurity competition with my team justCatTheFish 😼🐟 this weekend. We qualified for and will go to the finals in New York 🙂. Full scoreboard & challenges:

RT @gynvael: Paged Out! #6 is out!.Totally free, 80 pages, best issue so far!.'nuff said, enjoy!. (please RT to hel….

RT @robertswiecki: nsjail can into space!. "On the Feasibility of CubeSats Application Sandboxing for Space Mission….

Im on Insomnihack! If anyone wants to chat, let me know :)

And this landed on HackerNews as well: ! :).

For those who read it, I added two additions:. 1) When accessing memory before main thread stack, the kernel expands the stack. See this on screen below from Pwndbg. 2) Added "Why using the value of 65536?" section. Thx to MrQubo and Hackerspace Krakow for valuable comments :).

I have written a blog post about null pointers on Linux:

RT @secconctf: 🔥SECCON CTF 13 International Finalists🔥.Intrnational Final round: March 1-2, 2025 (JST). See image for finalists. We look fo….

Released Pwndbg 2025.02.19 with new commands for dumping Linux kernel nftables, initial LoongArch64 support and more!. See changelog on !.

RT @LiveOverflow: I guess somebody was thinking outside. the. sand. box! . "Compromised renderer can control your mouse and escape sb….

RT @trailofbits: Our team submitted 750+ pull requests to improve 80+ open-source projects in 2024. These contributions strengthen critical….