Definitely looking forward to it!! 😄

Very interesting reading on reverse engineering and fuzzing the Starlink's User Terminal runtime internals Credits Carlo Ramponi (quarkslab) blog.quarkslab.com//starlink.html #starlink #cybersecurity

New Blog: Technical Advisory: Sonos Era 100 Secure Boot Bypass Through Unchecked setenv() call research.nccgroup.com/2023/12/04/tec…

Uncovered a EoP flaw with Sick.Codes at #Hardpwn in Android Google Chromecast's KeyChain, tagged CVE-2023-48417. This allows an attacker to escalate privileges to manipulate the KeyChain operations by sending a malicious Intent to KeyChainActivity. Details in Dec's Android

⚠️ IMPORTANT A set ("5Ghoul") of new major security flaws in 📡 5G mobile network modems impact 714 smartphones models from all major brands—including #Apple, Samsung, #Google, Xiaomi, #OnePlus and more. Details on 5Ghoul here: thehackernews.com/2023/12/new-5g… #cybersecurity #technews

Nice writeup discussing SIM card-related security aspects Credits Orange Cyberdefense's SensePost Team sensepost.com/blog/2022/sim-… #sim #infosec

This was a great blog post by Man Yue Mo on Pixel 6 arbitrary kernel code execution and root privileges from a malicious apps github.blog/2023-04-06-pwn… #android #cybersecurity #exploit

So yes, we really did exploit an car IVI to run a playable doom, complete with touchscreen interaction!

My latest contrib to google's binja-hexagon was merged, now with readable system registers. Grab it here for personal enjoyment: github.com/google/binja-h…

Interesting project attempting to reverse engineering the precompiled Wi-Fi stack of ESP32 SoC to recreate an open source version Part 1: zeus.ugent.be/blog/23-24/ope… Part 2: zeus.ugent.be/blog/23-24/esp… Repo: github.com/esp32-open-mac… #esp32 #infosec

New Blog: Ghidra nanoMIPS ISA module research.nccgroup.com/2024/05/07/ghi…

What’s that you say? — You need NanoMIPS support to look at your 5G modem image with easy/free access? Have no fear! Check out our new open source nanoMIPS Ghidra module! 🥳

Happy to announce Robert Herrera and myself will be presenting about Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap at BlackHat USA this year! We will demo remotely compromising the device and capturing audio. blackhat.com/us-24/briefing…

New Blog: Enumerating System Management Interrupts research.nccgroup.com/2024/06/10/enu…

Don't forget! Tomorrow, on the 8th at 11:20am PST Alex Plaskett and Robert Herrera present Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap at Black Hat #BHUSA

We’ve got a couple of really cool PoCs to show off for tomorrow’s talk. Be sure to stop by!

I’m just now starting to process the immense amount of emotions I have about getting the opportunity to present at BlackHat and meet some super smart people. Huge shout out to Alex Plaskett for encouraging me to co-present with him! 🙏 #BHUSA

40 page whitepaper on Exploiting Sonos One Over-The-Air talk! nccgroup.com/media/uzbp3ttw…

🇬🇧🇬🇧 Not long now till myself and McCaulay talk about exploiting an EV charger controller and our approach in London.

A great opportunity to work with some exploit wizards and masters of their craft! 🙌