Continuing on the success of our Black Hat transitioning Veteran program, the Review Board has 10 free passes to the event available to military service Veterans. Please help spread the word. Those interested can complete this form to be considered. ooda.co/2yGx76M

Fibonacci Joke :-)

I’ve published the Second Part of the Analyzing Windows Memory Management Routine and Page Frame Number. #Windows #Memory_Managment #PFN rayanfam.com/topics/inside-…

Bummed to not be at Defcon this year, but 8 days in Vegas was enough. Have fun!

Saturday night.

Our internal implementation of @TheRealWover's Donut is finally public accenture.com/us-en/blogs/cy… Get it here github.com/Accenture/CLRv…

Symantec Endpoint Protection Bug discovered by FusionX R&D that collides with ZDI reporting by z0mb1e accenture.com/us-en/blogs/cy…

"Exploiting vulnerabilities in Cellebrite UFED" signal.org/blog/cellebrit…

Update nuked a bug I've been working on the Friday before its ready for the team to use...

Web Security vs. Binary Exploitation

Sometimes sucks to see people retweeting bugs you were using and getting CVE credits, but that's the gig.

Common researcher day. - Think of "novel" technique in shower - Confirm should work... - Look around to see if unknown... - Find out buddy blogged about a tangential abuse of same feature set half a decade ago. Still useful...

RE tip of the day: Debuggers implement memory breakpoints using PAGE_GUARD or PAGE_NOACCESS flags. Malware can use ReadProcessMemory to try to read its data. If this API call suddenly returns 0, it means that the breakpoint is set to it. #infosec#malware #reverseengineering

Folks claiming Windows EDR|AV shouldn't be in the Kernel & can effectively defended from userland. As a hacker of 30+ yrs, red team operator for 10+ yrs, and full time malware Dev: Please. Do go back to userland... As someone that uses modern infrastructure. No, you fools!

"Please come back to the office!" High Performer Needs: 2 monitors, decent chair, quiet space Office Offers: 2hr commute, $50 parking, gimmick lunch event, a laptop in a loud open space, school cafeteria chair. "Workers are lazy..."

This is an important talk: DEF CON 32 - Disenshittify or die! youtu.be/4EmstuO0Em8?si…

(㇏(•̀ᵥᵥ•́)ノ)

"I use AI in a separate window. I don't enjoy Cursor or Windsurf, I can literally feel competence draining out of my fingers." DHH, the legendary programmer and creator of Ruby on Rails has the most beautiful and philosophical idea about what AI takes away from programmers.

For newcomers & everyone who constantly gets stuck when trying to learn a new skill but gets distracted. My thoughts on deliberate practice and deep work; an attempt to help. “The Importance of Deep Work & The 30-Hour Method for Learning a New Skill.” azeria-labs.com/the-importance…