From Theory to Practice: Kernel Heap Spray Exploitation for Privilege Escalation💥 Part two of the blog series by my colleague Alex: northwave-cybersecurity.com/exploiting-ent…

Analyze the exploitability of non-control objects (data only) objects in Linux kernel arxiv.org/pdf/2401.17618 #Linux #cybersecurity

1377 High-yield Nukes I successfully triggered vulnerability and got memory corruption. Wait some days for paper =)

Hi, here is my memory corruption PoC for CVE-2024-7965 github.com/bi-zone/CVE-20… . Topic with writeup bi.zone/expertise/blog… . (English version will be soon).

To pwners and reversers: Have you tried my GEF fork? Features: - Kernel commands (without "vmlinux with symbols"; for qemu-system) - More architectures support (for qemu-user) - Minor heap allocator dumper And many more! Bugs? Please report them:) Enjoy! github.com/bata24/gef

My sandbox bypass technique is now visible issues.chromium.org/issues/3383813…

Hi! Our team found 2 cve's in vaultwarden. If you haven't updated yet, do it asap. Here's tecnical analisys: bi.zone/eng/expertise/…

Hey there! In our new research, I analyzed the details of in the wild privilege escalation vulnerability in clfs.sys. You can check out the report here: bi.zone/eng/expertise/…