Twitter | Pretraživanje | |
Mathias Payer
I'm a security nerd and professor at leading the 🐝 group. Interests: system/software security, mitigation, sanitization, fuzzing, exploitation
4.179
Tweetovi
275
Pratim
4.085
Osobe koje vas prate
Tweetovi
Mathias Payer 3. velj
Odgovor korisniku/ci @mukesh_tiwari @AntonyHosking
It decodes to something useful
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 3. velj
Odgovor korisniku/ci @AntonyHosking
Have you decoded the level1 and level2 messages? Hint, the encodings are not too hard (not going to spoil it as the competition is still running)
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 2. velj
Odgovor korisniku/ci @oleksii_o @bsdaemon
On mobile, so no links but VUsec had a neat pointer encoding scheme recently that used delta pointers and there were a couple other academic approaches that were faster. Nothing in broad use as 30% overhead is still too much for a mitigation
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 2. velj
Odgovor korisniku/ci @oleksii_o @bsdaemon
ASan is a sanitizer, not a mitigation. I. E. it does not detect or withstand attacker-controlled modifications. Still there are software only approaches that were faster (hint: MPX register allocation was tough and Metadata loads were expensive)
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 1. velj
Odgovor korisniku/ci @bsdaemon
It was fun to use MPX for academic gimmicks but if the performance cost for the intended use is higher than a software only approach then something is wrong
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 1. velj
Odgovor korisniku/ci @domenuk
Lots of very tiny processes, so lots of overhead for process creation/teardown and memory management 🤷‍♂️
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 1. velj
Odgovor korisniku/ci @Shiftreduce
a bunch of Intel Xeon E5-2680 v3 (Haswell)
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 1. velj
Odgovor korisniku/ci @domenuk
Docker containers
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 1. velj
Odgovor korisniku/ci @halvarflake
Close, Docker
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 1. velj
It's been a little chilly in the Lausanne region the last couple of days, we gotta do something against that!
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 29. sij
Just came across the Egalito rewriting paper by . Seems we had the same idea of using relocations for complete disassembly, ours published at (submitted 2018), the other at
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 27. sij
Odgovor korisniku/ci @bjg @herbertbos @vu5ec
Least Publishable Unit. It's an interesting metric some academics specialize in
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 27. sij
Odgovor korisniku/ci @herbertbos @vu5ec
But why don't you squeeze out a couple more LPU papers? 🤷‍♂️🙄🤔
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer proslijedio/la je tweet
Davide Balzarotti 23. sij
The Security Circus 2019 update is now online:
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 25. sij
Odgovor korisniku/ci @0xSergey @ICepfl
The talk was unfortunately not recorded
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 24. sij
Ahmad passed his PhD candidacy today. Congratulations! He will evaluate software testing metrics/benchmarks to improve fuzzing. I'm looking forward to more of his 🐝🐝🐝 work
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 24. sij
Jon Howell from VMware talking about verifying file systems and how to reuse proofs, even when development continues
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 23. sij
Odgovor korisniku/ci @v0max @nikitab
I think you misunderstood. Assume student 1 takes classes A, B, C. Student 2 takes classes A, D, K. These classes have lectures at different times. Students in Europe take 6-8 classes per semester. Weekly schedules are very different between student 1 and 2.
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 23. sij
Odgovor korisniku/ci @v0max @nikitab
My point is that different students take different classes, i.e., their schedules differ. Due to the differing schedules midnight is fair.
Reply Retweet Označi sa "sviđa mi se"
Mathias Payer 22. sij
Odgovor korisniku/ci @v0max @nikitab
No, I make the assumption that classes are between 8am and 6pm. Students take different classes, therefore midnight is a fair compromise to give all of them some time before the deadline.
Reply Retweet Označi sa "sviđa mi se"