Whack-a-mole Security™ - when root cause analysis really ain't your thing

oops, nice one! =)

Windows Sandbox > a new lightweight desktop environment tailored for safely running applications in isolation techcommunity.microsoft.com/t5/Windows-Ker…

In the last of the top 5 bugs of 2018, AbdulAziz Hariri details a fascinating #Adobe #Reader bug that led to the feature being removed entirely to address it. bit.ly/2S9SX7W

applepie: A hypervisor for Bochs. This will be a rapidly evolving project that currently is just a hypervisor but shortly will be an instrumentation and fuzzing framework. I've got like 8 Word 0-day from falkervisor I'll refind with this and blog about :D github.com/gamozolabs/app…

New Year, New Blog. I've updated my blog theme for the first time in 12 years and kicking things off with a multi-part post on Hyper-V Fuzzing. To start, we begin with a little tutorial on WDF driver development and how it greatly simplifies driver writing alex-ionescu.com/?p=377

Here is my exploit for one of stephen 's TurboFan bugs related to an incorrect typing of String.(last)IndexOf JSCall nodes. github.com/JeremyFetiveau…

phrack.org/papers/jit_exp… #phrack :)

New blogpost by Jeremy Fetiveau "Circumventing Chrome's hardening of typer bugs" doar-e.github.io/blog/2019/05/0…

Project Zero guest blog: "Trashing the Flow of Data" by Stephen Röttger (stephen) - googleprojectzero.blogspot.com/2019/05/trashi…

We've confirmed exploitability of Windows Pre-Auth RDP bug (CVE-2019-0708) patched yesterday by Microsoft. Exploit works remotely, without authentication, and provides SYSTEM privileges on Windows Srv 2008, Win 7, Win 2003, XP. Enabling NLA mitigates the bug. Patch now or GFY!

New blog post written together with my friend SorryMybad about using the JIT to abuse a non-JIT bug in Chakra (CVE-2019-0812) phoenhex.re/2019-05-15/non…

I wrote a thing about my macOS sandbox escape & LPE from Pwn2Own phoenhex.re/2019-05-26/att…

Am I the first person to pop a shell in notepad? 🤣 ....believe it or not, It's a real bug! 🐞

New blogpost by Axel Souchet "A journey into IonMonkey: root-causing CVE-2019-9810" doar-e.github.io/blog/2019/06/1…

I'm publishing some 🔥 research today, a major design flaw in Windows that's existed for almost *two decades*. I wrote a blog post on the story of the discovery all the way through to exploitation. googleprojectzero.blogspot.com/2019/08/down-r…

Day 2 of our Top 5 bugs for 2019 is an LPE in win32k.sys through indexed color palettes. The deep and thorough analysis is provided by Marcin Wiązowski, who reported the bug. bit.ly/38O65s0 #ZDITop5

After a lot of work and some crypto-related delays, I couldn't be more proud to publish Alex Ionescu's and mine latest research - The complete overview of CET internals on Windows (so far!): windows-internals.com/cet-on-windows/

Android Kernel Exploitation Workshop github.com/cloudfuzz/andr… cloudfuzz.github.io/android-kernel…

I started my career in infosec with no tech job experience and no connection to the hacking community and you can too