|
Maksim Shudrak
@
MShudrak
San Francisco, CA
|
|
Red Teaming, Exploit/Malware Development, Vulnerability Research, Security Tools Development, Reverse Engineering
|
|
|
56
Tweetovi
|
118
Pratim
|
507
Osobe koje vas prate
|
| Tweetovi |
|
Maksim Shudrak
@MShudrak
|
16. sij |
|
open github issue describing all details and I will help you fix this problem.
|
||
|
|
||
|
Maksim Shudrak
@MShudrak
|
21. stu |
|
Woot woot, my DEFCON talk is available on youtube now: check it out here: youtube.com/watch?v=4BkAxM…
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
Andrea Fioraldi
@andreafioraldi
|
16. stu |
|
I've just written a performant in-memory fuzzing module with @fridadotre for AFL++ github.com/andreafioraldi…. Watch AFL++ on GH and stay tuned for a frida_mode in the next days! pic.twitter.com/4FHZbsi0Fy
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
MicrosVuln
@microsvuln
|
15. stu |
|
Awesome-AFL : A curated list of different AFL forks and AFL inspired #fuzzers with detailed equivalent academic papers with AFL-fuzzing tutorials
github.com/Microsvuln/Awe…
#awesome #AFL #fuzzers
#Fuzzer #Awesome_AFL #AFL_forks #AFL_fuzzing_Tutorials
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
Sean Heelan
@seanhn
|
14. stu |
|
Slides from my CCS talk today on exploit generation docs.google.com/presentation/d… (View via View->Present or they won't make sense) Overview and paper at sean.heelan.io/2019/10/30/gol…
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
Max Moroz
@Dor3s
|
12. stu |
|
Reminder: if you love fuzzing and will be in the Bay Area on Dec 12th, come to our meetup!
CFP is open until Nov 17th, send your talk proposals to fuzzing-bay-area@googlegroups.com.
RSVP at meetup.com/San-Francisco-…
#fuzzing #bayarea #meetup twitter.com/Dor3s/status/1…
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
Max Moroz
@Dor3s
|
6. stu |
|
Fuzzing Bay Area meetup #2: meetup.com/San-Francisco-…
Join us Dec 12th at Facebook's office in Menlo Park.
Send your talk proposals to fuzzing-bay-area@googlegroups.com until Nov 17th.
Format: 3 talks (20 mins each) + Q&A + networking.
See you there! #fuzzing #bayarea #meetup
|
||
|
|
||
|
Maksim Shudrak
@MShudrak
|
31. lis |
|
would be cool in attack-defense format :) Whad do you think @Dor3s @jessploit ? :)
|
||
|
|
||
|
Maksim Shudrak
@MShudrak
|
2. lis |
|
Virus Bulletin 2019: Japanese Attacks Highlight Savvy APT Strategy: threatpost.com/virus-bulletin… via @threatpost
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
Cornelius Aschermann
@is_eqv
|
23. ruj |
|
We just published the source code of our fuzzer Redqueen: github.com/RUB-SysSec/red…
Thanks to my coauthors @ms_s3c @thorstenholz and @mr_phrazer
|
||
|
|
||
|
Maksim Shudrak
@MShudrak
|
24. ruj |
|
Sorry Cedric, just noticed your tweet, you can download GIF from here drive.google.com/file/d/1bhuz25…
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
Richard Davy
@rd_pentest
|
12. ruj |
|
Started playing with UAC bypasses today and found this - not seen it documented elsewhere... pic.twitter.com/ZsbK5sEtoc
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
Azeria
@Fox0x01
|
3. ruj |
|
I’ve decided to write up one of the iOS exploits in a new series, walking through each step of the underlying exploit development process.
Hope these post will be more accessible for ppl trying to learn exploit dev and understand how exploit devs think.
azeria-labs.com/heap-exploit-d… pic.twitter.com/cW7PltzbA9
|
||
|
|
||
|
Maksim Shudrak
@MShudrak
|
25. kol |
|
I modified AFL to save input for each modification on disk and then just print difference in terminal using very simple python script.
|
||
|
|
||
|
Maksim Shudrak
@MShudrak
|
25. kol |
|
That's how AFL mutates input file.
#fuzzing pic.twitter.com/0lmXAYL7Ne
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
David Brumley
@thedavidbrumley
|
23. kol |
|
|
||
|
Maksim Shudrak
@MShudrak
|
13. kol |
|
Thank you! :)
|
||
|
|
||
|
Maksim Shudrak
@MShudrak
|
13. kol |
|
You can use dumb fuzzing to fuzz Macho binaries but coverage-guided mode is not supported so far
|
||
|
|
||
|
Maksim Shudrak
@MShudrak
|
13. kol |
|
You can open an issue on Github and describe what kind of problems you have.
|
||
|
|
||
| Maksim Shudrak proslijedio/la je tweet | ||
|
Tavis Ormandy
@taviso
|
13. kol |
|
I'm publishing some 🔥 research today, a major design flaw in Windows that's existed for almost *two decades*. I wrote a blog post on the story of the discovery all the way through to exploitation.
googleprojectzero.blogspot.com/2019/08/down-r…
|
||
|
|
||