Lan Vu
@lanleft_
Followers
1K
Following
1K
Media
3
Statuses
94
she/her | Qrious Secure @qriousec | I made my own cover photo
Singapore
Joined September 2019
RT @5aelo: We released our Fuzzilli-based V8 Sandbox fuzzer: It explores the heap to find interesting objects and c….
github.com
This is a basic fuzzer for the V8 Sandbox. It uses the memory corruption API to implement a random-but-deterministic (given a seed) traversal through the V8 heap object graph and corrupts some obje...
0
71
0
Generate videos in just a few seconds. Try Grok Imagine, free for a limited time.
619
2K
9K
RT @offbyoneconf: Singapore - shout it out for Yuki Chen 🤩 !!! Bringing Day 1 of @offbyoneconf 2025 to a explosive end with 𝐀 𝐉𝐨𝐮𝐫𝐧𝐞𝐲 𝐢𝐧𝐭𝐨….
0
5
0
RT @__suto: Made a brief slide summarizing OTHERS ’ reports on V8 WebAssembly Engine. Hope you find it helpful!.
docs.google.com
V8 WebAssemploit __suto
0
40
0
RT @__suto: Today, me, @lanleft_ and @trichimtrich have submitted our latest report on Chromium detailed an information leak in ANGLE, wh….
0
6
0
RT @PhysInHistory: “Study the science of art and the art of science. Learn how to see. Realize that everything connects to everything else.….
0
2K
0
RT @notselwyn: I wrote a new blogpost about adding ksmbd (SMB server in the Linux kernel) fuzzing functionality to Syzkaller. Feel free t….
pwning.tech
Following the adventure of manually discovering network-based vulnerabilities in the Linux kernel, I'm adding ksmbd-fuzzing functionality to the already extensive kernel-fuzzing tool that is Syzkal...
0
32
0
RT @starlabs_sg: In our latest blog post, we're proud of our intern, @KaligulaSec for delivering a quality post."prctl anon_vma_name: An Am….
starlabs.sg
TLDR prctl PR_SET_VMA (PR_SET_VMA_ANON_NAME) can be used as a (possibly new!) heap spray method targeting the kmalloc-8 to kmalloc-96 caches. The sprayed object, anon_vma_name, is dynamically sized,...
0
15
0
RT @starlabs_sg: "Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability" is by our former inte….
starlabs.sg
Background The discovery and analysis of vulnerabilities is a critical aspect of cybersecurity research. Today, we will dive into CVE-2023-1829, a vulnerability in the cls_tcindex network traffic...
0
42
0
my exploitation for cve2023-1829 😅.
github.com
Contribute to lanleft/CVE-2023-1829 development by creating an account on GitHub.
0
34
220
My teammate wrote this babystep giantstep code so that he wont have to use mov attack on moving problem in Cryptohack. Rev ctf now = crypto 😭.
github.com
Contribute to Mistsuu/dlogC development by creating an account on GitHub.
1
2
5
RT @alexjplaskett: What makes a good security research topic? Here’s a simple 5 step framework for helping you decide on what to research a….
0
18
0