Vschko

2021-12-14 12:34:01 Turning msg_msg objects into arbitary read/write primitive.

link: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html
#msg_msg #kernel #linux #pwn Open / Comment

2021-12-12 19:45:38 Quick introduction into qemu exploitation: vulnerabilities in pci devices (ctf) and some internals related to this emulator are covered in those flawless articles:
- https://dangokyo.me/2018/03/25/hitb-xctf-2017-babyqemu-write-up
- https://dangokyo.me/2018/03/28/qemu-internal-pci-device
- https://tldp.org/LDP/tlk/dd/pci.html
bonus: http://phrack.org/issues/70/5.html (discovering real CVE in qemu)
#qemu #pwn #internals Open / Comment

2021-12-09 23:21:19 (https://dystopia.sg/seccon-beginners-2021-freeless/) Open / Comment

2021-12-08 13:09:44 Popping iOS <=14.7 with IOMFB

URL - https://jsherman212.github.io/2021/11/28/popping_ios14_with_iomfb.html

#IOSAppSec #IOS #Hacking #Learning Open / Comment

2021-11-28 12:13:44 #firmware #hardware #reverse_engineering #reverse_engineering_firmware #reverse_engineering_hardware #analysis #books #articles #learn Open / Comment

2021-11-11 08:44:13 https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html Open / Comment

2021-11-09 16:05:41 Great introduction to internals of eBPF technology (linux kernel) with schemes and code samples. (tq mem2019)
link: https://www.collabora.com/news-and-blog/blog/2019/04/05/an-ebpf-overview-part-1-introduction/

#ebpf #pwn #kernel #internals Open / Comment

2021-10-30 12:56:31 https://twosixtech.com/fuzzing-nginx-with-american-fuzzy-lop-not-the-bunny/ Open / Comment