Are you currently scrolling this app on your iPhone? Or maybe used Google Chrome to get to this tweet? If so, this post is for you. Discover the newest bugs that may be scurrying across your devices with our February 2022 #BugReport: go.trellix.com/3Mif7Bd

Found some 0day at the store

Great walkthrough of our skeleton key challenge - and an excellent accent wall to boot! Jesse Chick

I am excited to announce we are growing our team @TrellixLabs! I am hiring 2 Senior Vulnerability Researchers. Love to hack? Want to be part of finding the next big zero day? Come work with us! mcafee.wd1.myworkdayjobs.com/EnterpriseCare…

Take a gander at the March 2022 Bug report written by yours truly! Sit back, relax and enjoy the cuisine. trellix.com/en-us/about/ne…

We are excited to announce we are back for an in-person event this year to celebrate our 10th anniversary! BSidesPDX 2022 will be held on Friday, October 7th at Portland State University. Save the date & join our Google group to stay tuned for more details groups.google.com/g/bsidespdx

Sam Quinn Sam Quinn and I are thrilled to be speaking at DefCon in a few weeks! At hardwear.io we focused more on the process of hardware debugging; at #BlackHat and #DEFCON we'll focus more on the vulns with a unique LIVE demo. See you soon!! forum.defcon.org/node/242288

It's out! I found a pre-auth RCE (CVE-2022-32548) in tons of DrayTek routers. Check out the demo video I made with @TrellixLabs. It showcases the exploitation and post-exploitation of a fictional network (Jesse Chick helped me built it!) youtube.com/watch?v=9ZVaj8…

In part 3 of Vuln Research 101, Jesse Chick demonstrates overflowing a buffer & hijacking the flow of execution in the Linksys WRT54GL router. Watch the series, try your hand at the previously identified UPnP attack vector & let us know what you find. bit.ly/403LkmB

when you open a binary to reverse it and it’s C++

For all of you attending #DEFCON2023, come check out the talk Sam Quinn and I will be giving at 2pm on Saturday 8/12 (Track 4). We’ll be disclosing 9 0-days across 2 data center power management products, complete with juicy details 🤘🏻

#BHEU Briefing "Something Rotten in the State of Data Centers" Jesse Chick & Abraxus dive into the data center device management domain, showcasing the most impactful vulnerabilities & exploits unearthed. Learn more - bit.ly/3G4BubA

For all of you here at #BlackHatEU,Abraxus and I will be dropping a load of new (responsibly disclosed) 0-days in about 30mins. Come see our talk “Something Rotten in the State of Data Centers” in Room 14!

Spell