🏆 Team SolarWine SolarWine 2⃣ Team PolandCanIntoSpace Dragon Sector/p4 3⃣ Team DiceGang DiceGang Congrats to all 8 teams who participated in the Hack-A-Sat 2 final event CTF and thank you to everyone who tuned in all weekend! #HAS2Finals

ZK Hack is wrapped up… for now. Read about how the first edition of workshops and puzzles went in our blog post medium.com/zero-knowledge…

Ollie Whitehouse fidgeting bits Cedric Halbronn NCC Group Research & Technology volatility There's also 💻📡🛰️ IooNag SSH exploit support github.com/Synacktiv-cont…

The very important goal has been achieved, for the benefit of the entire information security society: we decrypted Intel XuCode!

Last week, we presented our research on Intel Wi-Fi chips at SSTIC. Our talk and our slides are now available: sstic.org/2022/presentat…. It features a demo of a DMA attack from the Wi-Fi chip! We also published our tools to interact with some Intel chips: github.com/Ledger-Donjon/…

We've finally published our quals & finals write-ups from last year's #HackASat along with the quals write-ups from this year: github.com/solar-wine/wri…

CVE-2022-34835 In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer overflow in the "i2c md" command enables the corruption of the return address pointer of the do_i2c_md function. cve.mitre.org/cgi-bin/cvenam…

Clever use of zero-configuration sandboxing for hermetic builds! #landlock

Ghost In the Wireless, iwlwifi Edition. Nicolas Iooss (💻📡🛰️ IooNag) is presenting the research he did with Gabriel Campana from Ledger Donjon team on Intel Wi-Fi chips at #blackhat22. They did a complete reverse of the firmware and found several critical vulnerabilities Live 🧵👇

crypto.stanford.edu/~dabo/cryptobo… Oh hey, a new version of Boneh and Shoup just dropped, and now it even has a section on MPC and UC security!!!

It seems this leak affects not only Intel Boot Guard technology, but all OEM signing-based mechanisms in CSME, such as OEM unlock (Orange Unlock), ISH firmware, SMIP and others...

Ken Shirriff If you want to know more about the origins of AVX-512, I did a lecture about it: guide.handmade-seattle.com/c/2019/talks/l… ...or the extended length slides: tomforsyth1000.github.io/papers/LRBNI%2…

This ssh-agent exploitation write up is worth reading to the end. First up the whole chain and how they figured it out is well documented and super interesting. They chain a bunch of shared library loads to create a jump into their executable shell code. But there’s a hidden gem

Microsoft Azure Boost: tailored Linux distro focused on security that provides offloading and acceleration to power the Azure fleet. Great talk by Luca at All Systems Go!! TPM, SELinux, dm/fs-verity, portable services, FPGA, DPDK... cfp.all-systems-go.io/all-systems-go… youtu.be/iB-wRdC8zNs

We gave two talks about Hypervisor Enforced Kernel Integrity and Linux Virtualization Based Security at #LinuxPlumbers - Leveraging KVM or Hyper-V to harden a VM: - overview: lpc.events/event/17/contr… - KVM: lpc.events/event/17/contr… - code: github.com/heki-linux

🧵🧵🧵 In this thread we’ll talk about the coolest 𝐙𝐊 𝐇𝐚𝐜𝐤 𝐈𝐕 price awarded by Zero Knowledge Podcast to the puzzle competition Top 3. 🥈🥇🥉 But first let’s appreciate how awesome 𝐙𝐊 𝐇𝐚𝐜𝐤 𝐈𝐕 was… We're very sad it ended... Yet so grateful it happened…  🥹😭🥲

We are thrilled to have open-sourced cargo-checkct, to help bridge the gap between academic research and industry practices for the early detection of timing vulnerabilities in cryptography libraries. Read more about it in our blog post. ledger.com/blog-cargo-che…

#Podcast #Cybersécurité Épisode #475 consacré à la sécurité des Wallets, avec 💻📡🛰️ IooNag et Vincent BOUZON (Ledger) nolimitsecu.fr/securite-des-w…

In this blog post, I share some dangerous practices in deploying Argo CD🦑. Enjoy reading! ledger.com/argo-cd-securi…