I hope to get discipline for reading it, because this year i have a skillissue managing my time and finishing things that i had started :)

Ring 0 is a highly-privileged state on CPUs. Negative Ring Levels have even *higher* privilege. You just haven’t heard of them. For X86, Ring -1 is Hardware Virtualization, Ring -2 is System Management Mode, Ring -3 is Intel ME / AMD PSP. Arm get's even weirder:

10+ hours of trying to write lsass parser end with fail :)

New class: Hypervisor Field Updates 2021-2025 In this series of four lectures Alisa Esage Шевченко looks into recent virtualization technology developments across hardware, exploit competitions, emergent attacks and fuzzing research. Details and purchase here: zerodayengineering.com/training/maste…

Our latest post details how we exploited Retbleed (a CPU vulnerability) to compromise a machine from a sandboxed process and VM! Curious? 👇 bughunters.google.com/blog/624373010…

As a little follow up, I wrote a small blog post/tutorial on how to reverse engineer windows drivers with IDA - this is aimed at people that newer touched drivers before and covers IOCTL codes, IRPs and some IDA shenanigans with unions. eversinc33.com/posts/driver-r… Enjoy :3

Please join me on the next Off By One Security stream with guest Eugene Lim (spaceraccoon | Eugene Lim ) on 4-Sept at 6PM PT for a session on "0-day Hunting Strategy!" This will be a great session for those interested in vulnerability research! Note the time at 6PM PT youtube.com/watch?v=dMt2qy…

lol i think i need help :)

Implementing a custom bootkit for Windows Sandbox exploration. An excellent post by Dylan Goods (Dylan Goods) and Duncan Ogilvie (Duncan Ogilvie 🍍). Source: secret.club/2022/08/29/boo… #redteam #maldev #malwaredevelopment

I used to say that, but no one believed me arxiv.org/abs/2506.08872

Silence is a type of chaos that no one understands.

I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: dirkjanm.io/obtaining-glob…

Learn how to use it to abuse it

New blog post: Laptop froze on hibernate, because an Intel driver bailed during power transition and left a power IRP hanging. This can be an interesting one for those that are interested in how I maneuver through a crash dump and how I think, etc. medium.com/@Debugger/hibe…

bruh, why crypto again in rev

For anyone interested in the technique that EasyAntiCheat.sys uses to hide pages in memory, you can read about it here: 0avx.github.io/posts/easyanti…

one of the reasons i don’t play CTF is that I hate when I try to solve a reverse engineering challenges for fun and I find that 98% of the challenge is a cryptography :) like why ? I will go spend more time reversing some “real” shit and find real bugs lol

CAT COOKIES

please don’t make me tap the sign