Orange Tsai  ๐ŸŠ (@orange_8361) 's Twitter Profile
Orange Tsai ๐ŸŠ

@orange_8361

This is ๐ŸŠ

ID: 179885363

linkhttp://blog.orange.tw/ calendar_today18-08-2010 09:51:13

1,1K Tweet

58,58K Takipรงi

512 Takip Edilen

Orange Tsai  ๐ŸŠ (@orange_8361) 's Twitter Profile Photo

Remember CVE-2024-4577, the PHP-CGI RCE bypass? Actually, the Best-Fit 'feature' also impacts non-CJK codepages such as locales in the Americas, Western Europe, Oceania, and more! splitline ๐Ÿ‘๏ธ๐Ÿˆโ€โฌ› and I will share these cool findings at Black Hat! ๐Ÿ”ฅ Let's make argument

Remember CVE-2024-4577, the PHP-CGI RCE bypass? Actually, the Best-Fit 'feature' also impacts non-CJK codepages such as locales in the Americas, Western Europe, Oceania, and more! <a href="/_splitline_/">splitline ๐Ÿ‘๏ธ๐Ÿˆโ€โฌ›</a> and I will share these cool findings at <a href="/BlackHatEvents/">Black Hat</a>! ๐Ÿ”ฅ

Let's make argument
NiNi (@terrynini38514) 's Twitter Profile Photo

Tips for Pwn2Own player: pick a target that no one care, then you got no collision. Shout out to my colleague: HexRabbit We manage to bypass all the hardware protection together ๐ŸŽ‰

Pumpkin ๐ŸŽƒ (@u1f383) 's Twitter Profile Photo

Dropped my slide for POC2024 on Linux kernel exploitation, including a journal from Pwn2Own Vancouver earlier this year. Enjoy ๐Ÿ™‚. u1f383.github.io/slides/talks/2โ€ฆ

Orange Tsai  ๐ŸŠ (@orange_8361) 's Twitter Profile Photo

Our talk at #BHEU is done! Hope you all enjoyed it. ๐Ÿ˜‰ A detailed blog is on the way, but in the meantime, check out the pre-alpha website worst.fit for early access and the slides! Huge thanks to Black Hat and my awesome co-presenter splitline ๐Ÿ‘๏ธ๐Ÿˆโ€โฌ›! ๐Ÿˆโ€

Orange Tsai  ๐ŸŠ (@orange_8361) 's Twitter Profile Photo

Voting for the Top 10 Web Hacking Techniques of 2024 is live! Two of my research are nominated โ€” Give them a vote! ๐Ÿ”ฅ > Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server! > WorstFit: Unveiling Hidden Transformers in Windows ANSI!

NiNi (@terrynini38514) 's Twitter Profile Photo

The blog post is the full version of my talk at 38c3. It's about some vulnerabilities we found in libarchive and some interesting behaviors of libarchive that you don't want to miss. My favorite part is it only took us 56 seconds to trigger a crash by AFL++.

Chi-en (Ashley) Shen (@ashl3y_shen) 's Twitter Profile Photo

Come join us at the Ask A Security Expert session at Black Hat Asia on April 4th! I'll be there with Orange Tsai ๐ŸŠ, @ryan_flores, and Marina Krotofil ๐Ÿ‡บ๐Ÿ‡ฆ๐ŸŒป answering your cybersecurity questions. Submit your topics in advance using the form on the event page. Looking forward to seeing you!

Come join us at the Ask A Security Expert session at Black Hat Asia on April 4th! I'll be there with <a href="/orange_8361/">Orange Tsai  ๐ŸŠ</a>, @ryan_flores, and <a href="/Marmusha/">Marina Krotofil ๐Ÿ‡บ๐Ÿ‡ฆ๐ŸŒป</a> answering your cybersecurity questions. Submit your topics in advance using the form on the event page. Looking forward to seeing you!
Angelboy (@scwuaptx) 's Twitter Profile Photo

Thrilled to share our latest deep dive into Windows Kernel Streaming! Just presented this research at offensivecon. Check it out: devco.re/blog/2025/05/1โ€ฆ