|
raptor
@
0xdea
Italy
|
|
When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl.
|
|
|
10.263
Tweetovi
|
18
Pratim
|
3.888
Osobe koje vas prate
|
| Tweetovi |
|
raptor
@0xdea
|
3 h |
|
You’re welcome, you deserve them 🙏
|
||
|
|
||
|
raptor
@0xdea
|
3 h |
|
I’ll be following your blog!
|
||
|
|
||
|
raptor
@0xdea
|
3 h |
|
I understand. For what it’s worth, I really enjoyed reading your post-mortem article on your blog. I think it’s very insightful and it provides actionable information for all developers and bug hunters.
Oh, congrats for the newborn by the way!
|
||
|
|
||
|
raptor
@0xdea
|
3 h |
|
Glad to hear this! Once again, I wish you the best of luck
|
||
|
|
||
|
raptor
@0xdea
|
3 h |
|
Good luck with your new endeavors, I hope your decision wasn’t the result of external pressures. Keep up the great work 👍
|
||
|
|
||
| raptor proslijedio/la je tweet | ||
|
SwiftOnSecurity
@SwiftOnSecurity
|
8 h |
|
I want to live in your James Bond cyber fantasies.
Earlier today a trillion dollar corporation forgot to renew their SSL certificate.
|
||
|
|
||
| raptor proslijedio/la je tweet | ||
|
Infiltrate
@InfiltrateCon
|
23 h |
|
#INFILTRATE20 Speaker Highlight: Jonathan Afek (@JonathanAfek) will be presenting 'Simplifying iOS Research: Booting the iOS Kernel to an
Interactive Bash Shell on QEMU' infiltratecon.com/conference/spe… pic.twitter.com/V52jvW5hmq
|
||
|
|
||
| raptor proslijedio/la je tweet | ||
|
Richard Godbee
@areuugee
|
2. velj |
|
It's the year 2020, and we're still finding buffer overflows in programs written in C.
Fortunately, those programs are only esoteric, rarely installed programs like...
<checks notes>
sudo.
|
||
|
|
||
| raptor proslijedio/la je tweet | ||
|
raptor
@0xdea
|
2. velj |
|
I’ve just published my exploit for the LPE and RCE in OpenBSD’s OpenSMTPD recently disclosed by @qualys
You can find it here:
github.com/0xdea/exploits…
#opensmtpd_too_open pic.twitter.com/q1ykEhz7vh
|
||
|
|
||
| raptor proslijedio/la je tweet | ||
|
Linus Henze
@LinusHenze
|
2. velj |
|
I’ve just uploaded my Jailbreak for the iPad Pro (2017) to GitHub. Right now, SSH and Sileo can be installed. Due to lack of devices, I cannot currently implement support for other devices. Feel free to create PRs if you would like to help me!
github.com/LinusHenze/Fugu
|
||
|
|
||
| raptor proslijedio/la je tweet | ||
|
Bas Alberts
@basalberts
|
2. velj |
|
Code is a moving target and audits are never complete ... even though the initial audit bootstrap may be annoying for a large or complicated surface .. and you may come up empty that first pass, it pays dividends to your time to keep up with that surface continuously twitter.com/0xdea/status/1…
|
||
|
|
||
| raptor proslijedio/la je tweet | ||
|
Andrew Barnas
@AndrewBarnas
|
1. velj |
|
Not having access to your own published paper is peak academia.
|
||
|
|
||
| raptor proslijedio/la je tweet | ||
|
Steve Crowley
@StevenJCrowley
|
2. velj |
|
Performance artist generates virtual traffic jams in Google Maps by pulling a wagon full of smartphones
simonweckert.com/googlemapshack… pic.twitter.com/m3bmQXvswI
|
||
|
|
||
|
raptor
@0xdea
|
2. velj |
|
Turns out my exploit reliably works also on Debian testing, with only a minor tweak to account for the different netcat flavor. twitter.com/0xdea/status/1…
|
||
|
|
||
|
raptor
@0xdea
|
2. velj |
|
Grazie a te!
|
||
|
|
||
|
raptor
@0xdea
|
2. velj |
|
Yeah! I personally also like this example: techblog.mediaservice.net/2019/10/local-…
|
||
|
|
||
|
raptor
@0xdea
|
2. velj |
|
Buffer overflow in sudo versions 1.7.1 - 1.8.25p1 when pwfeedback is set in sudoers
sudo.ws/alerts/pwfeedb…
This kinda flew under the radar, but it looks very exploitable to me.
|
||
|
|
||
|
raptor
@0xdea
|
2. velj |
|
Good stuff 👍 twitter.com/matteomalvica/…
|
||
|
|
||
|
raptor
@0xdea
|
2. velj |
|
And here’s a wonderful post by OpenSMTPD’s main developer @PoolpOrg:
poolp.org/posts/2020-01-…
Very interesting insight on how a bug enters the code and becomes exploitable over time. twitter.com/0xdea/status/1…
|
||
|
|
||
|
raptor
@0xdea
|
2. velj |
|
I’ve just published my exploit for the LPE and RCE in OpenBSD’s OpenSMTPD recently disclosed by @qualys
You can find it here:
github.com/0xdea/exploits…
#opensmtpd_too_open pic.twitter.com/q1ykEhz7vh
|
||
|
|
||