Brightiup (@realbrightiup) Twitter Tweets • TwiCopy

Ivan Fratric 💙💛

2 years ago

New Project Zero blog post in which I dissect Apple DER-encoded entitlements and tell a story about how I found a fun (albeit short-lived) bug in the way they were decoded. googleprojectzero.blogspot.com/2023/01/der-en…

thumb_up_off_alt233

chat_bubble_outline4

repeat68

shareShare

Seth Jenkins

@__sethjenkins

2 years ago

Blog post #2 is now live! Who knew that null-derefs might still be an exploitable bug class in Linux kernel? 😲 googleprojectzero.blogspot.com/2023/01/exploi…

Muirey03

@muirey03

2 years ago

I would love to share with you all my write-up and PoC on CVE-2022-42864, a TOCTOU in IOHIDFamily: muirey03.blogspot.com/2023/01/cve-20… I hope you enjoy!

thumb_up_off_alt259

chat_bubble_outline14

repeat59

shareShare

Alex Plaskett

@alexjplaskett

a year ago

Everyone knows that a firewall is meant to provide network security. However, what happens if that appliance has vulnerabilities on your external perimeter? Here’s 5 firewall and VPN exploit research from the past:

Linus Henze

@linushenze

a year ago

Helo Apple I can haz IOSurfaceAccelerator bug pls?

Mickey Jin

@patch1t

a year ago

It’s time to tell you more: jhftss.github.io/CVE-2023-23525…

Proteas

@proteaswang

a year ago

Tommaso (@[email protected]) gist.github.com/Proteas/2d8ea0…

thumb_up_off_alt6

chat_bubble_outline1

repeat1

shareShare

Mickey Jin

@patch1t

a year ago

New blog post here: CVE-2022-32902: Patch One Issue and Introduce Two jhftss.github.io/CVE-2022-32902…

Proteas

@proteaswang

a year ago

If you want to do deep research on `SPTM`, this should be helpful. proteas.github.io/ios/2023/06/09…

Brightiup

@realbrightiup

a year ago

😅 github.com/apple-oss-dist…

thumb_up_off_alt19

chat_bubble_outline1

repeat2

shareShare

Proteas

@proteaswang

a year ago

github.com/Proteas/a7-sep…

pattern-f

@pattern_f_

a year ago

slides “Write a SEP app for iOS” github.com/pattern-f/pres…

Adam Chester 🏴‍☠️

@_xpn_

a year ago

New blog post is up which looks at an unpatched vulnerability in macOS which allows us to hijack entitlements from signed binaries.. aka.. DirtyNIB. blog.xpnsec.com/dirtynib/

thumb_up_off_alt316

chat_bubble_outline12

repeat129

shareShare

Brightiup

@realbrightiup

4 months ago

I encountered the same issue as this Mac user, and I noticed that the green line doesn't appear when the screen is completely black. This is definitely a hardware problem. I'm wondering if anyone knows how to hack it from a low-level driver perspective to improve this situation？

thumb_up_off_alt3

chat_bubble_outline1

repeat0

shareShare

Quentin M

@0xdagger

4 months ago

Slides of my offensivecon talk are available: synacktiv.com/sites/default/…

Meysam

@r00tkitsmm

4 months ago

C’mon Apple, iOS kernel vulnerability is not eligible for bounty? What would then be? It could have been ended up in Donncha Ó Cearbhaill or John Scott-Railton blogs. 🤦‍♂️

C’mon Apple, iOS kernel vulnerability is not eligible for bounty? What would then be?
It could have been ended up in <a href="/DonnchaC/">Donncha Ó Cearbhaill</a> or <a href="/jsrailton/">John Scott-Railton</a> blogs. 🤦‍♂️

thumb_up_off_alt2,2K

chat_bubble_outline91

repeat184

shareShare

John Aakerblom

@jaakerblom

4 months ago

Meysam Donncha Ó Cearbhaill John Scott-Railton The house always wins

thumb_up_off_alt25

chat_bubble_outline0

repeat1

shareShare

Tielei

@wangtielei

4 months ago

POC: github.com/wangtielei/POC…

wei

@xiaowei___

a month ago

MSRC fixed a RCE bug in TCPIP module. I found the bug several months ago. Its score is 9.8 and exploitation is more likely. Please apply the patch immediately.

thumb_up_off_alt837

chat_bubble_outline24

repeat199

shareShare

Brightiup

@realbrightiup

8 days ago

didn't expect freebsd kernel vulnerabilities to be one of the favorite targets for researchers to withhold

thumb_up_off_alt2

chat_bubble_outline0

repeat0

shareShare