Twitter | Search | |
tihmstar
1) ./autogen.sh 2) make 3) sudo make install tihmstar@gmail.com Patreon: GPG:
14,970
Tweets
142
Following
53,579
Followers
Tweets
tihmstar retweeted
Greg Linares Sep 21
Ever want to test systems & see if your password is ever stored/sent in plaintext? Make it: X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H* I am on the phone with a vendor right now because my test account is in an inoperable state. 🧐
Reply Retweet Like
tihmstar 22h
Replying to @axi0mX
Yea. Also if they do checks to see if size is greater that 0x40 (and properly handle the case where the size isn’t a multiple of 0x40) they then would want to do bne rather than bgt because otherwise it won’t zero very large buffers (although not sure how realistic this is)
Reply Retweet Like
tihmstar 23h
Replying to @mdwoolweaver @axi0mX
Yet for all existing vulnerable phones a public exploit is a good thing because it raisea awareness of the bug and the possibility and threat of being exploited
Reply Retweet Like
tihmstar 23h
Replying to @mdwoolweaver @axi0mX
The fact that apple added a mitigation now makes me hope that this particular hole won’t be exploited in the next phone i buy. Which is: the new iPhones SEP won’t have the same bug if this iPhones SEP gets hacked publicly
Reply Retweet Like
tihmstar 23h
Replying to @mdwoolweaver @axi0mX
That’s not how it works though. The existance of a bug is already public knowledge. If checkra1n doesn’t release an exploit, someone else will either release, or use in private. Think of surpressive governmental regimes for example.
Reply Retweet Like
tihmstar 23h
Replying to @axi0mX
How is an unpatchable private exploit beneficial to anyone but the person owning the exploit? Like it’s not even contributing to overall security. That’d be a disadvantage for everyone. Can’t really follow your reasoning here :o
Reply Retweet Like
tihmstar Sep 21
Replying to @axi0mX
The other bug is that they assume a signed size, while it should be unsigned, right? i.e. it won’t branch with a value greater than int64_max_val
Reply Retweet Like
tihmstar Sep 21
Replying to @yifanlu
It’s all about the battery indicator!
Reply Retweet Like
tihmstar Sep 20
Replying to @qwertyoruiopz
nice
Reply Retweet Like
tihmstar Sep 19
Replying to @Muirey03 @axi0mX
nice writeup :)
Reply Retweet Like
tihmstar retweeted
hashcat Sep 18
Some early RTX3080 benchmarks: Both bcrypt and sha512crypt more than twice as fast than RTX2080Ti. Can't wait for a full list.
Reply Retweet Like
tihmstar Sep 18
Switching between 2 chrome tabs too often, too fast made my macbook just panic o.o At this point this doesn’t even surprise me anymore
Reply Retweet Like
tihmstar Sep 18
Replying to @halvarflake @s1guza
Good thing that in germany we are slowly replacing our polititians with comedians, cuz apparently they both seem to do the opposite job better than the other. (Sonneborn)
Reply Retweet Like
tihmstar Sep 17
Replying to @Diatrus
yep agrees. futurerestore kinda already does that, but yea it’s less than ideal.
Reply Retweet Like
tihmstar Sep 17
Replying to @_lauritz_
You hacked free background youtube :o
Reply Retweet Like
tihmstar retweeted
Lauritz Sep 17
With iOS 14, Picture-in-Picture video playback finally comes to iPhones. There is a neat trick how to watch YouTube videos in PiP mode. Just bookmark this JavaScript URI: javascript:document.getElementsByTagName(%22video%22)%5B0%5D.webkitEnterFullScreen()
Reply Retweet Like
tihmstar Sep 17
Replying to @Diatrus
What do you mean? Although not ideal, you can already compile tsschecker as lib. But yea, if i do a rewrite that will definetly be improved
Reply Retweet Like
tihmstar retweeted
Min(Spark) Zheng Sep 16
Cool! iOS 14 GM pwned by from yesterday.👍
Reply Retweet Like
tihmstar Sep 16
Replying to @s1guza @ARX8x @iAdam1n
Didn’t i recently merge ’s pull request about something that could cause this? What version are you using?
Reply Retweet Like
tihmstar Sep 16
Replying to @DennisReimann
Really sad. It’s probably still the best app compared to official github app and other alternatives :‘( I’d buy it again if i could
Reply Retweet Like