Google Chrome pdfium shading drawing integer overflow lead to RCE, from 360 Vulcan Team: blogs.360.cn/blog/google-ch… zhouat 👍👍

🤪

Here are the slides from my #OffensiveCon19 talk about my approach for JavaScript engine fuzzing: saelo.github.io/presentations/… My master's thesis (for which I developed the fuzzer) can be found here: saelo.github.io/papers/thesis.… Thanks for the great conference offensivecon! =)

CVE-2016-5568 Oracle JRE AWT Use-After-Free Remote Code Execution Vulnerability exploit demo

🤔 x.com/bee13oy/status…

👏 x.com/vangelis_at_po…

Adobe Flash Patches（CVE-2017-3075, CVE-2017-3081, CVE-2017-3083, CVE-2017-3084）fix four of my bugs reported to them helpx.adobe.com/security/produ…

Adobe Flash Player SecureSocket Use-After-Free Remote Code Execution Vulnerability died in the womb. It's poc here github.com/bo13oy/flash/t…

POCs for Avast Free Antivirus Software's Kernel Vulnerabilities I found last year, I will share other vendors' soon. github.com/bee13oy/AV_Ker…

👏 x.com/bee13oy/status…