For the last three months, I've been working with rapid7, taking part at Google Summer of Code, contributed a library that will facilitate SQL injection in Metasploit modules, and a few modules making use of it. red0xff.github.io/posts/google_s…

I contributed some challenges to BSides Algiers Quals CTF (which started just a few minutes ago). Check them out at ctf.bsidesalgiers.com

when i encounter dynamic programming in job interview

☀️ Summer Solstice philanthropy: I am making this mini-class available for free! 4 hours of deeply systematical theory & practice introduction on hypervisor vulns and how to find them, taught by a specialist researcher, bug hunter and pwner 🔥 How to claim your seat, thread 👉🏻

gist.github.com/red0xff/76192a… Not really a writeup, but I'm sharing my solution to Qilinglab, thanks to Shielder, that was cool, and to Qiling Framework

New workshop: PE Injection Study. Goes over the NtQueueApcThread injection routine from the malware Cryptowall for offensive tooling in golang. malwareunicorn.org/workshops/pein…

Just published a new article about Keccak/Sha3 (explains its steps in simple words, and explains how leaking the internal state can lead to unwanted consequences) red0xff.github.io/posts/invertin… Feedback is welcome (PS: I'm not a cryptographer)

Today is a great day ! red0xff is joining us as a reverser 🔬 Welcome on board !

Just checked the latest #metasploit modules and seen this. 💪💪💪 red0xff github.com/rapid7/metaspl…

Here are 11 reasons why we should use #HyperDbg, the differences between HyperDbg and #WinDbg, and how HyperDbg will change our debugging/reversing journey. A thread (24 tweets) 🧵:

Hajime! We are glad to announce our second ring0 sponsor! 🙏 Thank you RandoriSec for helping us to gather the infosec community in Paris ⛩️ To find out more about RandoriSec, visit their website at randorisec.fr #HEXACON2022

Heap buffer overflow within the Netfilter subsystem of the Linux kernel (CVE-2022-34918). ps: Metasploit Project module coming soon. randorisec.fr/crack-linux-fi… #netfilter #0day

This might be the best bug I found. Never thought I'd be writing a kernel exploit as reliable, clean and fast as a browser exploit. For a while I actually used this to root my research phone when can't be bothered to patch the rom: github.blog/2022-07-27-cor…

A random idea I had that turned into a short new blog post. (This post does not demonstrate a vulnerability, but rather a logic flaw in the execution environments of the most popular competitive programming platforms). red0xff.github.io/posts/cracking…

A blog worth reading, thank red0xff

Hello, I will be at Hexacon, come say hi ! I will be glad to discuss anything. We are also hiring at RandoriSec ;)

Second time I complete flare-on :p, despite the busy month. ping RandoriSec

🔺This is the first talk I've given in 6 years – featuring formal verification of post-quantum cryptography, the evolution of the Secure Page Table Monitor, a view into Memory Integrity Enforcement, updates to Apple Security Bounty… and a personal note.