@seadragnol, one of our juniors shared his kCTF exploit and the lesson learned: digging through unreproducible Syzkaller reports for gold.

RT @thezdi: We have a full win!! Ho Xuan Ninh (@Xuanninh1412) and Tri Dang (@trichimtrich) from Qrious Secure used a 4 bug chain to exploit….

RT @thezdi: Fantastic! Ho Xuan Ninh (@Xuanninh1412) and Tri Dang (@trichimtrich) from Qrious Secure successfully demonstrated their exploit….

Thanks to LLM, we migrated our hacking kungfu to web3 successfully!

The hibernation of our Linux kernel team has ended. Our team member @SeaDragnoL has successfully pwned the COS 109 target of Google's kernelCTF!

We kick off 2025 with a 0day in Mesa driver of Chrome GPU found by @kyr04i and @__suto

Our V8 sandbox escape found by @__suto and @lanleft_ has been derestricted .

A brief JavascriptCore RCE story by @lanleft_ and An Nguyễn.

Santa gave us freshly new JSC 0day ✌️

RT @bienpnn: This is the report of the Windows LPE bug that I used in TyphoonPwn this year.

After CVE-2024-0223, we reported the bypass and it was assigned CVE-2024-3516:.Months later, someone else reported another variant and Google decided to give up and allow Chrome's GPU to crash instead of fixing the issue.

hey #googlectf folks please give us a v8 sbx challenge so we can make our recent submitted 0day useful one last time

CVE-2024-0517 - Chrome V8 maglev compiler optimization RCE vulnerability, has been derestricted (along with exploit code). This was reported by our teammate @__suto.

RT @__suto: I successfully exploited #V8ctf using . CVE-2024-0517, writeup and exploit will be published later.

Additionally, last year our teammate @bienpnn also pwned Linux kernel on kernelCTF with a 0-day, that has been fixed and assigned CVE-2023-4244. So far, we have successfully pwned 2/3 liveCTF hosted by Google. We are going to aim for kvmCTF in the future.

Our teammate @__suto has just pwned V8 JavaScript engine on Google's V8CTF version M120 using a 0-day exploit.