Stay tuned :)

Omer Tsarfati and I harnessed ChatGPT to create a #polymorphic #malware, which uses ChatGPT on runtime to load and mutate new code that easily bypasses the content-filter. We are looking forward to continuing and research the topic -:) cyberark.com/resources/thre…

Your keyboard may not seem like a #cybersecurity threat… until you read what Tal Lossos of CyberArk Labs discovered. spr.ly/60113kjBR

The #NTFS3 driver for #Linux is not without its flaws. I #bug has been found by Alon Zahavi that could lead to a denial-of-serveice attack. #DoS cyberark.com/resources/thre…

Lovely conference with lovely people. Thanks NULLCON !

Had a blast. You should definitely check it out if you wanna see how I've exploited it to a LPE, in a colorful way of course 🔴🔵🟢🟡

I'm excited to share that I will present one of my latest projects at REcon ! Stay tuned and cya there :)

.Tal Lossos explaining how he's exploiting 3rd party kernel modules. In this case, OpenRazer... #RSAC2023 #opensource #bufferoverlow #fuzzing

Recon 2023 Talk selection has been released, cfp.recon.cx/2023/featured/ The Conference schedule will be published soon. Register here: recon.cx/2023/index.html See you in June! #cybersecurite #REcon2023 #ReverseEngineering

Very excited to present my talk at HITBSecConf ! Cya soon :) conference.hitb.org/hitbsecconf202… #HITB2023HKT

A deep dive into how we've found some cool low-hanging-fruits in the Linux kernel 🐞🔍cyberark.com/resources/thre…

Did you know that NVMe over TCP exists? I sure didn't, but it's a super interesting attack vector. Tal Lossos just put out an excellent blogpost of using CppCheck to find a null pointer deference in the Linux kernel’s NVMe driver. Check it out! cyberark.com/resources/thre…

#HITB2023HKT The blog post version of this talk is now available vul.360.net/archives/699 and the slides are here conference.hitb.org/hitbsecconf202…

The recorded session of my talk at REcon is live! youtube.com/watch?v=szCZH6…

Check it out! Our resident expert reverse engineer Tal Lossos giving his talk on at REcon Montreal. Topic: Vulnerabilities in the NVMe (Non-Volatile Memory Express) protocol and its extension, NVMeoF (NVMe over Fabrics).

Interesting reading on how to use Static Code Analysis tools for finding vulnerabilities (with a NULL Pointer Dereference in the NVMe driver of the Linux kernel as practical example) Credits Tal Lossos (Tal Lossos) cyberark.com/resources/all-… #Linux #kernel #infosec

Finally got around to publishing this post on a 𝙘𝙧𝙞𝙩𝙞𝙘𝙖𝙡 𝙫𝙪𝙡𝙣𝙚𝙧𝙖𝙗𝙞𝙡𝙞𝙩𝙮 𝙞𝙣 𝙖 #𝗖𝗼𝘀𝗺𝗼𝘀𝗦𝗗𝗞 𝙘𝙝𝙖𝙞𝙣! Dive in if you're interested in the security of the #IBC protocol and the Cosmos in general 🪐✨ cyberark.com/resources/thre…

Quite a few people asked me if we’ve found more vulnerabilities in the NVMe Linux kernel driver. So, here is my answer! Check out the blog post of my colleague Alon on his journey of fuzzing the driver with some lovely findings!

Had an amazing experience at Insomni'hack this year, talking about adding NVMe-of/TCP to syzkaller. In case you want to check it out: Here’s the recording - m.youtube.com/watch?v=Jc25CM… And the slides - download.scrt.ch/insomnihack/in…

Happy to share that some of my reports were fixed in the new macOS version :) support.apple.com/en-us/121238