"Understanding WebAssembly An in-depth peek into the VM running in modern web browsers." - crazy hugsy - sophos.com/en-us/medialib… … - #WebAssembly #Security #Wasm #wasm

Remote Code Execution in apt/apt-get, "the HTTP fetcher process URL-decodes the HTTP Location header and blindly appends it to the 103 Redirect response" justi.cz/security/2019/…?

We are excited to announce our Day 2 keynote. This one will definitely make you get up early despite the fun of the Friday night party... "What's in a Jailbreak? Hacking the iPhone: 2014 -> 2019" by mdowd bsidescbr.com.au/speakers.html

New blog post! Are you winning if you're pinning? by pritch - elttam.com.au/blog/certpinni…

Our talk schedule is up! bsidescbr.com.au/schedule.html

Interested in Hyper-V Internals? Read Part 2 of my continuing series on "Writing a Hyper-V "Bridge" for Fuzzing" as we get into the guts of hypercalls: alex-ionescu.com/?p=471 with sample code and more!

Project Zero blog: "Examining Pointer Authentication on the iPhone XS" by Brandon Azad (Brandon Azad) - googleprojectzero.blogspot.com/2019/02/examin…

To go with a release of NtObjectManager v1.1.19 I've written a brief history of BaseNamedObjects and the "new" BNO isolation feature sneaked into Windows 10. tyranidslair.blogspot.com/2019/02/a-brie…

Project Zero blog: "The Curious Case of Convexity Confusion" by Ivan Fratric (Ivan Fratric 💙💛) - googleprojectzero.blogspot.com/2019/02/the-cu…

I'm all for people being paid for their work. I'm all for there being better channels for vuln disclosure making it easy for people to help protect the public. I even totally get the need for an offense market. The defense market would do well not to normalize extortion further.

Posted the slides from my #bluehatil talk covering trends, challenges, and strategic shifts in the software vulnerability landscape. Questions, comments, and alternative perspectives welcome 🙂 github.com/Microsoft/MSRC…

8 years and 27K bugs later, ClusterFuzz is now available for anyone to use - opensource.googleblog.com/2019/02/open-s…

The always erudite Tim O'Reilly on why the SV “blitzscaling” mantra causes more harm than good. I feel that part of the reason so many security products are so user-hostile (& mostly suck) is because currently, VCs pick winners instead of customers. qz.com/1540608/the-pr…

Android: binder use-after-free via fdget() optimization bugs.chromium.org/p/project-zero…

For those interested in coverage-guided fuzzing, I've just released CmpCov - an instrumentation module for clang/SanitizerCoverage, which breaks down CMP/strcmp()/etc. into bytes and writes the extra coverage data to standard .sancov files. Get it here: github.com/googleprojectz…

Check out our blog post about research Adam Iwaniuk and I did that lead to CVE-2019-5736! blog.dragonsector.pl/2019/02/cve-20…

Here's the video recording for my presentation at #bluehatil last week on "Trends, Challenges, and Strategic Shifts in the Software Vulnerability Mitigation Landscape" youtube.com/watch?v=PjbGoj…

New blog release "Accessing Access Token for UIAccess" on restoring some small part of the older token stealing attack which was killed in Windows 10 RS5. Contains an example PS script to script an admin command prompt 😄 tyranidslair.blogspot.com/2019/02/access…

/part