You all thinking that AAAAAA is just some random padding we use in pwn to reach the place we want, while actually it is expressing the most profound sentiment that is required to be a pwner

5AM, tras haber pasado todas las fases del duelo a lo largo de 10h seguidas, descubriendo que debo modificar cada vez más y más partes más y más íntimas y delicadas del código, por fin consigo hacer un commit con algo funcional

I'll be giving a talk with Arget at #defcon tomorrow Sunday at 1pm in track 4 about abusing Linux memory to bypass file system based protections and distroless envs. The technique can also be used to execute anything in a very stealth way. Don't miss it if you are around!

Find a summary of the talk Arget and Carlos gave at DEFCON in book.hacktricks.xyz/linux-hardenin… and slides in docs.google.com/presentation/d… Talk title: Exploring Linux Memory Manipulation for Stealth and Evasion Enjoy!

Awesome talk of Arget  at HackTricks Track in /RootedCON  2023 about stealthiness in Linux titled: Stealth intrusions with DDexec-ng & in-memory dlopen() Don't miss it: youtube.com/watch?v=VM_gjj… #hacktricks

Got to hang with HackTricks and Arget to hear all about their DEFCON presentation & latest research -- "ddexec", tooling to run shellcode and binaries in memory and bypass read-only filesystem protections or distroless environments 😱 SUPER COOL youtu.be/7dc29U9DeIE

Just watched a really great talk on, essentially, file-less in-memory code execution in read-only noexec partitions of distroless/rootless containers from HackTricks and Arget from their DEF CON 31 talk. Definitely give it a watch! youtu.be/poHirez8jk4

Web Security vs. Binary Exploitation

Back at DEFCON 31 there was a great talk from HackTricks and Arget on hacking distroless containers. I wrote up a blog explaining what the attack is and what it means for users of distroless containers. chainguard.dev/unchained/unde… youtu.be/poHirez8jk4?si…

Con compañeros así da gusto trabajar xD

The urge to name and shame a company that ghosts you after 6 rounds of interviews is VERY STRONG!

I've audited the Android kernel in late 2023, and reported 10+ kernel bugs to Google, along with 2 exploits. Today, I'm releasing the first exploit, targeting the Mali GPU on Pixel devices, accessible from an untrusted_app context. github.com/0x36/Pixel_GPU…

don't think ive ever seen this

Pero este tío no tiene vergüenza?

just finished a new blogpost on how i exploited the V8 javascript engine at a CTF! it's a beginner friendly journey from a memory corruption to a browser pwn, and features lots of cool CSS to help you understand various concepts along the way. have fun!! lyra.horse/blog/2024/05/e…

one day this will be part of an elaborate exploit chain

No te puedes perder a nuestro siguiente ponente Yago Gutiérrez y su charla "Grabación de llamadas en Android: Una perspectiva ofensiva" en la próxima EuskalHack Security Congress VIII Arget #ESCVIII securitycongress.euskalhack.org/index_es.html#…

Comenzamos con la charla "Grabación de llamadas en Android: Una perspectiva ofensiva" con Yago Gutiérrez, donde entenderemos el funcionamiento del sistema de audio en Android #MobileEnv #Malware #Reversing #ESCVIII Arget