jndok
@jndok
Followers
4K
Following
535
Media
90
Statuses
1K
i write kernel extensions in javascript
Joined February 2012
Analysis and exploitation of Pegasus kernel vulnerabilities (CVE-2016-4655 / CVE-2016-4656):
10
48
148
Absolutely trash take. This book is surely dated but lays a solid foundation for many concepts (coding, Unix, binary exp, networking, etc..). Been a long time since I last read it but I remember it got me hooked and cleared many questions/doubts I had when starting my journey.
This book must be the sole reason millions of people were permanently turned away from the field because of how ridiculously dry it is. Couldn’t get through half a page without passing out in a concussion coma. Almost convinced me to change careers. Beginners: avoid this.
1
0
21
I wore glasses for like 12 years of my life and seriously switched to contacts due to constantly not being able to see shit while wearing a mask
0
0
10
03920bfb1597242717c6f450c75d45e2b87052d3805594400c62862c415e005faee23fc054061794f9e7768f74ca5b648c9e06d2d3be8a4d17d4df00978af818
12
2
29
tired: using git and writing careful commits wired: spamming CMD+S and copy-pasting the source file you’re editing once in a while to back it up inspired: spamming CMD+S and handling changes and reverts only through CMD+Z in your editor
2
2
22
For non-Italian speakers, “patatino” literally means “small potato” but it’s basically always used by a girlfriend to refer to the boyfriend in an extremely cringy way, this is way too specific to be a coincidence lmfao
1
0
26
R.I.P. to one of the coolest bugs I’ve ever found. Mach ports type confusions are a lot of fun. Great job by @WangTielei on his analysis! Hash proof:
pastebin.com
Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time.
a8880d69ad30df37f1137bf14ab7d4d0f8270412c168dc7b2af4ef8b0b8f3d6bbb03198f8face6be1e2f9f625edb65dbb9dd1419528bbf63ff1c3c2b073ae45f
0
4
56
6db68c8bf64d3c468360d8553807d228b09101c01428e38f542db9ad1dff5be97ef6a15988979a220f62d8215eea86eac9016f5b397e560f7e51ccccfd400e3a
0
1
29
If you are an iOS/macOS kernel Security Researcher, and you are looking for a new (EU based) job, working with an awesome team on hard challenges, send me a PM. RT is appreciated!
0
61
116
061293467861763f67b11b444124de35aca96aec8f56216379335f4801fbfd480b484feb18fcd00e1c39e9783b35501fb66cb09f6eef6e270cacc1b4d89f37b1
1
1
24
a8880d69ad30df37f1137bf14ab7d4d0f8270412c168dc7b2af4ef8b0b8f3d6bbb03198f8face6be1e2f9f625edb65dbb9dd1419528bbf63ff1c3c2b073ae45f
2
2
40
Home now after #36c3, this was honestly the best edition. Never seen the whole scene together like this! Super sad that I went back too soon, didn’t even manage to say goodbye to all of you. Still, thanks everyone for this awesome event and hopefully see you all again next year!
0
3
32
31bb5f7e477635a079cc6724fa35d08c6488316e12a933a7939c1b7b7fe8a950b6e35d8d17a2f8a3fb3cc837c307f67b5311cb2940f6a06c097da00639354ab3
3
2
29
0
3
27
found this back in May, expected it to be killed sooner tbh as it was not a deep bug at all. exploitation was quite fun though :P
The bug I prepared for tfc iPhone Safari RJB was fixed in 13.2 before TFC :(
0
2
24
Took longer than expected, after all it’s best to wait for them to actually make some profit before cashing in :P
Apple accused upstart Corellium of illegally selling ‘perfect replicas’ of the iOS operating system under the guise of helping discover security flaws
0
1
6