Browser Exploitation Introduction x.com/i/broadcasts/1…

Merci beaucoup à l’orga je suis grave content d’avoir gagné le premier prix

big up à nous

Let's read my first post and give me your opinion !! trikkss.github.io/posts/hiding_w…

Windows kernel dump C++ parser. github.com/0vercl0k/kdmp-… #Hack #315 (2020)

Je suis très heureux d'être de la partie cette année 👍

Congratulations to all participating teams for the PwnMe finals. RedRocket.Club congrats you were great! The fight was incredible, until the last minute between Polyflag and WreckTheLine. It was great spending time IRL with the best 🇪🇺 teams. Let's do it again next year!

New article: Exploring Grey-Box Fuzzing of Closed-Source Windows Binaries ! => bushido-sec.com/index.php/2023…

To conclude the tale of CVE-2023-2163 here is the exploit github.com/google/securit… Thanks again chompie for her amazing RCA and her other ebpf research meadori For his amazing engineering feedback and also amazing help with RCA Simon Scannell For his original research!

Ravi de partager ma qualification pour l'équipe de France !

hi, just wrote my first post on the exploitation of a random github VM, let me know what you think :) numb3rs.re/posts/popping_…

Merci à toute l’équipe de :fire:fire: c’était super cool et merci aussi à HZV qui s’est surpassé sur les challs cette année :)

Squirrel Sandbox Escape: I'm publishing my VR journal for a 1day I was curious about for years now. I have around six days of raw footage: from initial analysis all the way to PC takeover, so there should be more episodes coming soon :^) Link: youtube.com/watch?v=h__rwI…

OMG.. whatsapp 0c in pwn2own

You just got a black box target and zero context. Where do you even begin? Here’s my take after two years in vuln research - what actually matters, and what’s just noise 👇 numb3rs.re/posts/approach…

Dug into a custom router protocol for fun. Turned out to be: type confusion + command injection = RCE 🎉 Full write-up here: 📎numb3rs.re/posts/abusing_…

A true Full-Stack Engineer.