Earlier this year, I used a 1day to exploit the kernelCTF VRP LTS instance. I then used the same bug to write a universal exploit that worked against up-to-date mainstream distros for approximately 2 months. osec.io/blog/2024-11-2…

Back in H2HC last week, Jordy Zomer and me presented this tool we've been working on (with Artem) we now call "🐧 Kernel Explorer". It's still early on, I'll work on FF and a11y next! storage.googleapis.com/kernelctf-dash… storage.googleapis.com/kernelctf-dash… Code is github.com/google/securit…

"Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits" Slides: a13xp0p0v.github.io/img/Alexander_… Repository: github.com/a13xp0p0v/kern… Credits Alexander Popov #Linux #infosec

We are back😎 Say hello to our kernelCTF submission for CVE-2025-37752🩸 Who would have thought you could pwn a kernel with just a 0x0000 written 262636 bytes out of bounds? Read the full writeup at: syst3mfailure.io/two-bytes-of-m… 👀

"Skin in the game: Survival of GPU IOMMU irregular damage" by 0 cru5h and fish!

We may or may not know who did this.. Hilton please let us come back next year! #nothingissafe Hilton

In this post, Man Yue Mo(Man Yue Mo) will look at CVE-2025-0072, a vulnerability in the Arm Mali GPU, and show how it can be exploited to gain kernel code execution even when MTE is enabled. github.blog/security/vulne… Exploit for Pixel 8 github.com/github/securit…

My biggest surprise at #defcon33 : in a head-to-head LiveCTF match, one player’s AI bot beat _both_ humans to the punch. I was commentating the match & was super confused because I could see the player had only just begun their solve script: youtube.com/live/TYn38VfmD… 🧵👇

There's what you market, and what you tell researchers who know better: lukasmaar.github.io/slides/ndss25-…