Analysis and Exploit for CVE-2024-8381, a SpiderMonkey Interpreter Type Confusion Bug! Unfortunately, due to nature of this bug, exploit is only applicable when ASLR is disabled. Shoutout to Nils Bars for finding this bug. github.com/bjrjk/CVE-2024…

We're super stoked to publish this post. A huge shoutout to our former intern, rainbowpigeon who poured his heart & soul into this 7-8 months ago. It took us a bit to polish it up but we're incredibly proud of him. Dive in & let us know what you think! starlabs.sg/blog/2025/12-m…

I discuss the creation of Mergen, VM based obfuscations, and explore how compiler techniques are used for reverse engineering and deobfuscation. nac-l.github.io/2025/01/25/lif…

While looking at the cesspit of online discourse, Connor McGarr is always a beacon of hope.

Found a .NET method on SCCM site servers that can be called to decrypt secrets stored in the site DB a while back with Garrett and Lee Chagolla-Christensen. Another alternative to 🥝🏳️‍🌈 Benjamin Delpy's mimikatz misc::sccm, Adam Chester 🏴‍☠️'s C# gist, and Sanjiv Kawa's SQLRecon. github.com/subat0mik/Misc…

A short writeup for the kernel pwn I solved last weekend in lactf terawhiz.github.io/2025/2/oob-wri…

My colleagues wrote about unpacking PyArmor V8 #PyArmor cyber.wtf/2025/02/12/unp…

Found an SSRF in Sliver C2 (CVE-2025-27090), allowing an attacker to read and write TCP traffic through affected teamservers. Demo shows leaking the IP of a Sliver teamserver hidden behind redirectors Writeup and PoC in replies

VSCode is free software. It's not even possible to buy a license for it.

Would you like to transition from local user to cloud access w/o having to dump browser cookies or hope SSO via kerberos is enabled? 🧵

New blog post + BOF coming soon 🐸

We've open-sourced another core Binary Ninja feature: SCC. If you're not familiar with it, the Shellcode Compiler has been built-in to BN from the beginning, allowing you to build small PIE shellcode in a variety of architectures right from the UI: scc.binary.ninja

New #BinaryNinja plugin: Obfuscation Analysis Simplifies arithmetic obfuscation (MBA) directly in the decompiler (see demo below). Also identifies functions with corrupted disassembly. Co-authored by nicolodev; available in the plugin manager. github.com/mrphrazer/obfu…