I'm honored to have been asked to speak at Typhoon Con this year! It will be my first time in Korea and I am looking forward to presenting my Forget the Sandbox Escape talk (including some research I couldn't fit into my Bluehat talk :D )

Just announced: I'm teaching Modern Binary Exploitation at REcon for the second year in a row. We'll go from first local exploit with no mitigations to a remote exploit using ROP chains against a target with ASLR, NX, and stack canaries. Details here: recon.cx/2020/montreal/…

Check out our new blog post on injecting into 32bit macOS processes on Mojave - rpis.ec/blog/mach_inje…

New CTF! Hack The Vote 2020 organized by @rpisec, starts at 2020-10-23 23:00:00 UTC ctftime.org/event/1017/

We are cooking up some fun things for this, so make sure to have your pwntools..., erm, ballots ready for this fall...

FRIDA Stalker - new documentation #MobileSecurity ⁦Frida⁩ frida.re/docs/stalker/

Interested in computer security but could never make it to our meetings? In a virtual workshop held this Friday at 6pm EST, we will be teaming up with RPI's acm-w branch to deliver a beginner friendly introduction to our club and what we do. youtu.be/5wf2tqQivL0

In our last stream, we discussed the basics of embedded devices, threat modelling, and secure boot-chains. In our next stream held this Friday at 6pm EST, we will be applying these fundamental concepts using the Nintendo Switch as a case study. youtu.be/C6ZI4lt-TRQ

rpics RPISEC Technically 3rd time ;P First was as a joined team with MIT LL

Hack The Vote 2020: 1f4c39986543fb0475c2403e55dd622c9e4dbea67fdeb932406fdc3a9e26253c

Thanks for playing 😎🎉💯

Sorry for belated announce, CTF lovers! The 2020th edition of TokyoWesterns CTF is finally coming! (ctf.westerns.tokyo) Registration is open at score.ctf.westerns.tokyo, stay tuned :)

Thank you to everyone who played Hack The Vote 2020, we thoroughly enjoyed putting it together. If you didn’t get a chance to check out the CTF, this was our website. The source code and author solutions for most of the challenges will also be released.

I organized my notes and made it into slides when I learn about segment heap . If you find something wrong, please let me know. Hope it can be helpful fo those who want to learn segment heap in windows kernel. speakerdeck.com/scwuaptx/windo…

Trend Zero Day Initiative Alisa Esage Шевченко Wasn’t itszn the first woman in Pwn2Own? (Great work to Alisa though)

Fortunately this http.sys bug was an internal find by our team. This one thanks to Max, Stefan Blair and everyone who contributes to our tooling and automation.

All Your Base Are [Still] Belong To Us: Fuzzing Modern UDP Game Protocols With Snapshot-based Fuzzers blog.ret2.io/2021/07/21/wtf…

Deus x64 (deusx64.ai) is a series of increasingly difficult reverse-engineering and binary exploitation challenges. It launches on September 15th. Will you have what it takes to reach the end?

Sounds like a pretty awesome intern :)

amd.com/en/resources/p…