Hey Mark Cuban, any chance Mark Cuban Cost Plus Drug Company is working on releasing fertility drugs any time soon?!

Having to chain casts just to initialize strings is just not OK ...

This is the technical writeup in how we found and exploited the CVE-2022-41343 (RCE via Phar Deserialisation in Dompdf <= v2.0.0). We presented this vulnerability at Ruxmon September and we are finally doing the public disclosure! I hope you like it ;-) tantosec.com/blog/cve-2022-…

SharedMemUtils - A simple tool to automatically find vulnerabilities in shared memory objects (commonly used for IPC in Windows services) This tool immediately uncovered potential exploitation routes in both Nvidia and Dell Audio services on my system. x86matthew.com/view_post?id=s…

Another #codeql query contribution merged github.com/github/codeql/…

Introduction to Linux Heap Internals x.com/i/broadcasts/1…

Halo's Gate is (almost) dead, Long live ShellWasp! "Weaponizing Windows Syscalls": youtube.com/watch?v=ME7IGH…

CVE-2022-34669, my first driver vulnerability, was recently patched by NVIDIA nvidia.com/en-us/security…

If you're interested in bluetooth low level hacking take a look at this cool project by Matheus Eduardo Garbelini (Matheus Eduardo Garbelini) Active Bluetooth BR/EDR Sniffer/Injector: github.com/Matheus-Garbel… #bluetooth #esp32 #espressif #hacking #infosec

What is a must in an oscilloscope for hardware/IoT hacking?

I just published a write-up about my brief participation in the latest edition of #diceCTF. vovohelo.medium.com/capturing-the-…

Has anybody ever faced this problem? stackoverflow.com/questions/7612…

I'm thrilled to announce "Smashing the State Machine: the True Potential of Web Race Conditions" will premiere at Black Hat' #BHUSA this August! Looking forward to sharing some exploits that blew my mind! blackhat.com/us-23/briefing…

Anybody ever took cyberwarfare.live/product/google… ? Looking for honest reviews.

I just published a new process injection tool. You read about it in my new ".NET Threadless Process Injection" article link.medium.com/H0RMsm8CiHb

In this article I show how I modified Daniel Santos's JIT-compiled method hook tool, CLR-Injector, to perform shellcode injection in combination with Module Stomping, Memory Encryption and more. medium.com/@S.1.l.k.y/pro…

Exploiting embedded mitel phones for unauthenticated remote code execution : baldur.dk/blog/embedded-…

Just because you get access denied accessing a folder, it doesn't mean you can't get access. A quick look at bypassing the security on the WindowsApps folder. tiraniddo.dev/2024/06/workin…

PrintNightmare strikes again: itm4n.github.io/printnightmare…