Nice post, you should check it out 😀

A Glitch to Die For: One Hacker, One Job, and a Ticking Clock slavamoskvin.com/a-glitch-to-di… #infosec #cyberpunk

I really liked how pragmatic and down to earth this blogpost is

Something's brewing

The sheer scale of this operation, as well as the investigation, is fascinating inversecos.com/2025/02/an-ins…

Congrats .!

That’s one funny fuzzing conference nordicfuzzcon.org

(ZDI-CAN-26505)[ksmbd] Attacker send malformed smb2 negotiate request -> smbd return error response -> attacker can send smb2 session setup even thought conn->preauth_info is not allocated(NPD) github.com/torvalds/linux… Reported by Viacheslav Moskvin(Slava Moskvin | Path Cybersec)

Excited to join Stephen for a stream on Linux kernel fuzzing! 23.05 8 pm CET / 11 am PT

We're gonna write a fuzzer potentially capable of rediscovering CVE-2025-0927 OOB write in HFS+. Join 22.05 11 AM PT/8 PM CET!

Something fun happened just after a few minutes of running the final iteration of the fuzzer for this Thursday's stream with Stephen Sims

Slides and fuzzer code from the Fuzzing Linux kernel modules stream are now live: github.com/sl4v/hfsplus-k… Thanks again to Stephen Sims for hosting!

My network fuzzer net-shredder found a remote NULL pointer dereference in the Linux kernel's SMB server (ksmbd) slavamoskvin.com/zdi-25-310-rem…

Proof that AI can now find 0-days even w/o agents or advanced tooling. Also pretty cool: o3 managed to find the known vulnerability only 8 out of 100 times, and the 0-day just 1 out of 100. I hadn’t realized it might take that many tries to get a useful result from AI.

🛠️ [POC2025] TRAINING MacOS/iOS Kernel User Fuzzing Training by Meysam Firouzi (.) 📅 Nov 10-12 (3 days) 📍 Four Seasons Hotel Seoul, South Korea 🔗 More info powerofcommunity.net/#training #POC2025

. has done amazing work on Mac OS fuzzing and POC_Crew 👨‍👩‍👦‍👦 is one of the best offensive cons in Asia!

The UaF in libxslt found by P0 stays unfixed for 3.5 months (public for 3 weeks). Here's why: lwn.net/Articles/10259…

AI coding: for performance, return true

It was a lot of fun!

New AI benchmark just landed