Just got an LPE exploit for a 0-day bug I found working on the mitigation-v4 Linux kernel first try :D shoutout chompie who's cooking up the container escape 👀

While most vendors ship timely patches for vulnerabilities reported by Project Zero, they don’t always reach users. Today, we’re announcing Reporting Transparency, a new policy to encourage downstream fixes googleprojectzero.blogspot.com/2025/07/report…

I’m honored to be joining some amazing women in cybersecurity at the #BHUSA panel “Hacking the Status Quo”. We’ll be sharing the journey of our careers: how we got started and what’s shaped us. Bring your questions and leave with fresh perspective 😊 blackhat.com/us-25/briefing…

Hosting a Windows kernel chal is hard! The box has been slammed so bad someone needs to go into the office to fix it 😭. And yet, still no one has the flag. I guess Infinite Loop Solution Inc.’s driver is totally secure 😏. The backup is online! gogogo

First time back to the gym since new job (4 months!). Happy brain chemicals Healthy hacker best hacker

Very excited to do my first public talk at Hexacon w/ chompie! 0-day GPU driver exploits anyone?

kernel hackers go serverless ring0 → cloud 9 ☁️ ?? brb pwning yr gpu nodes ✨

¡Rompiendo los drivers GPU en español! Hasta pronto Buenos Aires

CVE-2025-23282 is going to debut tomorrow at Hexacon in our talk "CUDA de Grâce" w/ chompie, but you can try CVE-2025-23332 now! Tweetable Python PoC: ``` import fcntl fcntl.ioctl(open('/dev/nvidiactl'),218,0) ```

tfw a tweetable PoC can take down yr cloud compute

they didn’t want kCTF players to bankrupt them

en 5 minutos, en vivo!! entrevista en español con yo dinosaurlover38 youtube.com/live/RdihQH7uu…

Last month, Dylan Tran and I gave a talk Munich Cyber Tactics, Techniques and Procedures called "COM to the Darkside" focusing on COM/DCOM cross-session and fileless lateral movement tradecraft. Check out the slides here: github.com/bohops/COM-to-… Recording should be released soon.

huge if true

Any Canadian friends with strong red team backgrounds looking for an AdvSim spot? ibmglobal.avature.net/en_US/careers/…

You can also use this same idea to defeat CONFIG_SLAB_VIRTUAL, even if a kernel PTE has been assigned; the memory still has another VMA from the fixed phys/virt relationship We did this in our exploit for CVE-2025-23282 (public soon🤞)