Squeee so excited 😍😍😍 @Blackhoodie_RE will be at @DistrictCon next year, on January 23rd @SynapticRewrite and I will teach a day of Reverse Engineering for Vulnerability Discovery, registration is now open

here's a small project i put together recently - a custom "bare-metal" protected-mode x86 NES emulator. it fits into 1MB RAM and loads ROMs from a floppy disk, no OS required. if you want to turn your old PC into an awkward NES clone with bad sound emulation then look no further.

Watch XOR’s talk CUDA de Grâce: Owning AI Cloud Infrastructure with GPU exploits Kernel + driver bugs aren’t just a LPE problem, they’re a cloud problem. With the explosion of AI in the cloud, NVIDIA’s GPU drivers have become a valuable attack surface https://t.co/cIYKcYMb6L

A ton of great info here about what Apple does for their secure boot chain: “A Reverse Engineer’s Anatomy of the macOS Boot Chain & Security Architecture”

If you feel like you're bad at your job and it's making you depressed, just consider that, as the investigation of the recent heist revealed, the password to access the Louvre's videosurveillance system was "Louvre".

how do I deflate this to allow it to fit back in❔

kernel hackers go serverless ring0 → cloud 9 ☁️ ?? brb pwning yr gpu nodes ✨

#ESETresearch has discovered #HybridPetya ransomware on VirusTotal: a UEFI-compatible copycat of the infamous Petya/NotPetya malware. HybridPetya is capable of bypassing UEFI Secure Boot on outdated systems. @smolar_m https://t.co/UQAcC4O3Pu 1/8

An Amiga Demo With No CPU Involved https://t.co/gMqBgc1gKn

consumer devices really don't stand a chance against motivated nerds.

Bootloader vulnerability and firmware decryption in TP-Link (Tapo) C210 cloud cameras https://t.co/jUb9a1NTpd Credits @Watchful_IP #embedded #infosec

I did a writeup on exploiting the ASIO64.sys driver that was fuzzed from @vxunderground's vulnerable driver project. Nothing novel or complex, but I had fun writing the exploit: https://t.co/Wi8TinrGBx

I've been asked countless times how to learn VR & xdev. The answer is always: "do something you think is cool". It's hard to figure out what to do. Try the PhrackCTF which I've now open-sourced. It's not a contrived CTF - modeled after real vulnerabilities

At long last - Phrack 72 has been released online for your reading pleasure! Check it out: https://t.co/R0PKIifRDA

The Phrack Binary Exploitation CTF hasn’t been solved yet!! 2 challenges unlock #Phrack72 to the public. 1 Linux challenge and 1 Windows kernel challenge — based on my favorite real life bugs. Win an exclusive Phrack coin and get your write up on the website!

Here’s a video of an exploited Lenovo 510 FHD Webcam downloading a meterpreter payload from the internet and executing it, letting us send keystrokes to the computer it’s connected to, then return to being a regular unsuspecting webcam 😄 (Top left: webcam serial port output

Going to @defcon?! We'll have 9500 print copies of Phrack, and Sunday @ noon @netspooky @richinseattle and @chompie will be on main stage! https://t.co/CnATXAp5ri

@jessemichael and I got accepted to speak at @defcon and i hope that we can make our talk as entertaining as it should be😂 https://t.co/kMoH3QWjBQ

SecureBoot bypass for UEFI-compatible firmware based on Insyde H2O https://t.co/5u6D8J5wc5 #uefi #infosec

The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction Article by @u1f383 about the internals of the Ubuntu's implementation of restricting unprivileged user namespaces and figuring out another bypass method. https://t.co/c2NAJ2RddZ