Twitter | Pretraživanje | |
Maxim Goryachy
Hardware/Software/Firmware/IntelME Researcher. Opinions are my own and not the views of my employer.
556
Tweetovi
223
Pratim
3.549
Osobe koje vas prate
Tweetovi
Maxim Goryachy proslijedio/la je tweet
Neuron Hackspace 27. sij
[Мастер-класс] DMA-атаки на практике. Эксплоит через прямой доступ к памяти. Практическое занятие по эксплуатации уязвимостей низкоуровневого доступа к оперативной памяти (Direct Memory Access). Дата: суббота 1 февраля 2020
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy 24. sij
Odgovor korisniku/ci @OhmSpectator
Купите жидкого азота;)
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Mark Ermolov 22. sij
We've found a bug in CSME on-die ROM!💥 Intel says it's already targeted by CVE-2019-0090 (). Security Fuses can be extracted! 🔥 Mehlow and Cannon Point chipsets are affected. Stay tuned!
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Boris Larin 21. sij
Hacking Sony PlayStation Blu-ray Drives [SLIDES]
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy 20. sij
Odgovor korisniku/ci @yanaimoyal @_markel___
Please re-read again
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy 20. sij
Odgovor korisniku/ci @yanaimoyal @_markel___
I talked about market platform, you comment looks like "this is not our problem" for me. I believe that the sign of good work should not be considered a feature implementation, but how often it is used by customers.
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy 20. sij
Odgovor korisniku/ci @yanaimoyal @_markel___
so re-read my first tweet
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy 20. sij
Odgovor korisniku/ci @yanaimoyal @_markel___
Could you tell me please some market computer with such protection?
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy 20. sij
Odgovor korisniku/ci @_markel___
Let me remind that there is still no protection against during the version downgrade on client platforms...
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Mark Ermolov 20. sij
Intel Cannon Point chipset (300 series) as well as Apollo Lake and Gemini Lake SoCs have very dangerous Delayed Authentication Mode (DAM) vulnerability allowing arbitrary code execution and the root key prediction. Detailed write-up is coming. Stay tuned.
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Project Zero Bugs 9. sij
Remote iPhone Exploitation Part 2: Bringing Light into the Darkness -- a Remote ASLR Bypass
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
IACR 7. sij
SHA-1 is a Shambles - First Chosen-Prefix Collision on SHA-1 and Application to the PGP Web of Trust: G Leurent, T Peyrin
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Daniel Gruss 10. pro
Embargo ends - is public: It allows to induce faults into computations in SGX, breaking crypto and corrupting memory. Great collaboration with Kit Murdock, , , , Frank Piessens!!
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Ulf Frisk 3. pro
MemProcFS v3.0 finally released 🔥 Super fast memory analysis in convenient file system or C/Python API. Now support Threads, Handles, VADs! Completely rewritten memory core -> way better memory&file recovery rates 😀
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Mark Ermolov 23. stu
This very pictorial scheme proves a link between IOSF Side Band segments of CPU complex and PCH in modern platforms (Cannon Lake, Ice Lake). So, the question is whether now Intel CSME has an access to MEE of Intel SGX which is certainly connected to IOSF SB
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Project Zero Bugs 21. stu
Bad Binder: Android In-The-Wild Exploit
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
OFFZONE 23. lis
OFFZONE 2020 — April 16-17, Moscow, Russia. Save the date! 🗓 📝Call for Papers is now officially open — get your talk proposals submitted 📜👉🏻 Make sure to check out Speaker Benefits and CFP Principles ➡️ See you at OFFZONE 2020!
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
🥝 Benjamin Delpy 13. stu
Happy to see more usages of Credential Guard protection in Windows 10 (enterprise/business), with persistance across reboots. * BCryptIsoKeyData for CNG private keys ; * Credential for domain_password credentials ; * LsaIsoAsymmetricKeyBlob for MachineBoundCertificate.
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy proslijedio/la je tweet
Mark Ermolov 12. stu
Intel discloses remote 'privileges escalation' vulnerability in CSME for non-vPro systems (not having AMT module). That's a precedent breaking well recognized assumptions about remote attacks on CSME (CVE-2019-0169):
Reply Retweet Označi sa "sviđa mi se"
Maxim Goryachy 12. stu
Perfect keynote "Hardware Security is Hard: How Hardware Boundaries Define Platform Security" by on 2019
Reply Retweet Označi sa "sviđa mi se"