🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

New advisory is now out! The Nighthawk R7000 is a popular Netgear router, with over 50,000 positive reviews on Amazon. Find out how a vulnerability in NETGEAR R7000 allows an attacker to run arbitrary code without requiring authentication. ssd-disclosure.com/ssd-advisory-n…

I made a mistake of wanting to know how branch prediction works on modern CPUs... ece.uah.edu/~milenka/docs/…

Check out our talk on how to build "Fast, Specialized #Unikernels the Easy Way" presented by Felipe Huici from NEC at Association for Computing Machinery EuroSys 2023 youtube.com/watch?v=m0fj4r…

New heap exploitation technique just dropped

Nice ASCII art in Linux source comments award: git.kernel.org/pub/scm/linux/…

Here's my favorite git feature that no one knows about: You can reference commits using the commit message instead of the hash. The ":/" syntax accepts a regex that matches any part of the commit message, returning the youngest matching commit. git-scm.com/docs/revisions…

“I See Dead μops: Leaking Secrets via Intel/AMD Micro-Op Caches” claims to break Spectre mitigations: cs.virginia.edu/~av6ds/papers/…

This is not a motherboard - it's the Gwangyang Steel Plant in South Korea, the world's largest steel mill

The author of this post found the SolarWinds attack a 2-3 months before FireEye's announcement on December 8th 🤯reddit.com/r/Solarwinds/c…

TIL: indirect function calls casted from masked flags exist in C! Guess where I found this!?

Tune in if you're interested in our work on protecting against data-only attacks using HW-assisted virtualization. #xMP: cs.brown.edu/~vpk/papers/xm… (IEEE S&P #SP20) -- Cc: Sergej Proskurin Marius Momeu Seyedhamed Ghavamnia michalis

incoming… google more unsealed docs, this time in the Google case led by Arizona Attorney General. The newly unsealed material is underlined in green unsealed this week (left). Last year, Google proactively unsealed less risky material (right) when Judge first ruled. /1

Windows Kernel Exploitation Tutorial Part 1: Setup rootkits.xyz/blog/2017/06/k… Part 2: Stack Overflow rootkits.xyz/blog/2017/08/k… Part 3: Memory Overwrite rootkits.xyz/blog/2017/09/k… Part 4: Pool Overflow rootkits.xyz/blog/2017/11/k… Part 5: NULL Pointer Dereference rootkits.xyz/blog/2018/01/k…

Sergej Schumilo and I just published the code of our snapshot based hypervisor fuzzer Nyx github.com/RUB-SysSec/Nyx. Paper and talk: usenix.org/conference/use…. Stay tuned for a much more polished version at nyx-fuzz.com

I'm excited to share information about our research, in which we (+Nir Ohfeld) found a critical vulnerability in Azure Cosmos DB itself - effectively allowing malicious actors to fully compromise databases of thousands of customers. Wiz #ChaosDB chaosdb.wiz.io

🔥 New Post: Announcing InAppBrowser - see what JavaScript commands get injected through an in-app browser 👀 TikTok, when opening any website in their app, injects tracking code that can monitor all keystrokes, including passwords, and all taps. krausefx.com/blog/announcin…

📢Marius Momeu at AsiaCCS presenting our work on hardening SLAB-based (kernel) allocators, against memory errors, via SMAP-assisted isolation -- joint work with TU München, Sergej Proskurin, and michalis | cs.brown.edu/~vpk/papers/is… | #brownssl #islab