JP Blake @_jpblake
Joined September 2014-
Tweets1K
-
Followers24
-
Following197
-
Likes7
(1/2) Few years old but still a great series on embedded devices reverse engineering by @Palantir555 The case of a Huawei HG533 router Hunting for Debug Ports: jcjc-dev.com/2016/04/08/rev… Scouting the Firmware: jcjc-dev.com/2016/04/29/rev… #iot #embedded #reverseengineering #infosec
Heads-up for KASAN users: starting with 6.3, bad accesses via memcpy, memmove, or memset are not detected on x86 [1] unless you build the kernel with Clang 15+ or not-yet-released GCC 13.1+ [2]. [1] git.kernel.org/pub/scm/linux/… [2] git.kernel.org/pub/scm/linux/…
Blog post series on reversing, emulating and exploiting smartphones (Pixel 6) bootloaders (credits @eshard) Part 1: eshard.com/posts/pixel6_b… Part 2: eshard.com/posts/pixel6bo… Part 3: eshard.com/posts/pixel6_b… #android #mobile #hacking #infosec #reverseengineering
ages ago I forgot to document publicly how you actually can exploit a setuid dos2unix binary (a real thing on a certain appliance). I left it as an exercise for the reader. anyway, it allows you to conduct an arbitrary file write as root. here is one way to do it.
Introduction to Linux kernel exploitation Series by @k3170Makan Debugging with QEMU: blog.k3170makan.com/2020/11/linux-… Stack Overflows: blog.k3170makan.com/2020/11/linux-… RIP control: blog.k3170makan.com/2021/01/linux-… #Linux #kernel #exploit #infosec #cybersecurity
I've released the PoC for CVE-2023-0179, my nftables vulnerability, which surprisingly can be exploited locally from an unprivileged context. github.com/TurtleARM/CVE-…
Good refresh series on Linux basics by @brk0v Files, pipes, processes, etc. Prologue: biriukov.dev/docs/fd-pipe-s… Files: biriukov.dev/docs/fd-pipe-s… Pipes: biriukov.dev/docs/fd-pipe-s… Processes: biriukov.dev/docs/fd-pipe-s… Pseudoterminals: biriukov.dev/docs/fd-pipe-s… #Linux #learning
Couple years old but still a good intro series for learning the basics of syzkaller and Linux kernel fuzzing (credits @f0rm2l1n) Part 1: f0rm2l1n.github.io/2021-02-02-syz… Part 2: f0rm2l1n.github.io/2021-02-04-syz… Part 3: f0rm2l1n.github.io/2021-02-10-syz… #Linux #kernel #fuzzing #syzkaller #infosec
Rooting Google Pixel 6 series requires help from the Pixel 7 on the latest Android 13 beta #MobileSecurity #AndroidSecurity by @xdadevelopers xda-developers.com/google-pixel-6…
If you're interested in Wi-Fi (802.11) fuzzing, WPAxFuzz could be worth a try GitHub repository: github.com/efchatz/WPAxFu… Publication: mdpi.com/2410-387X/6/4/… #wifi #80211 #fuzzing #infosec #cybersecurity #wireless
Intro to eBPF exploitation by @stdnoerr 3bpf challenge from D^3CTF stdnoerr.github.io/writeup/2022/0… #ebpf #Linux #kernel #exploit #infosec #cybersecurity
My new fav tweet: "Looking for Remote Code Execution bugs in the Linux kernel" Very useful blog post by @andreyknvl to learn a bit about Linux kernel fuzzing, networking and syzkaller xairy.io/articles/syzka… #Linux #kernel #fuzzing #networking #syzkaller #hacking #infosec #cyb…
Great blog post by @GHSecurityLab on CVE-2022-20186 exploitation From a bug in Arm Mali GPU kernel driver to root on a Pixel 6 github.blog/2022-07-27-cor… #android #cve #exploit #infosec #cybersecurity
Unsafe use of follow_pfn in get_vaddr_frames leads to UAF or writes to ro-pages bugs.chromium.org/p/project-zero…
Build 2G-5G SDR BTS with open source code github.com/cn0xroot/BTS_R…
usenix.org/conference/woo… “Weird Machines” in ELF: A Spotlight on the Underappreciated Metadata
Here is a Chrome RCE+SBX exploit chain, you can replicate it using 1 command, thanks to VerSprite Research! bit.ly/3WsJZ6N
Reverse Engineering Rustlang Binaries - A Series brightprogrammer.netlify.app/post/reverse-e…
In October, we disclosed several severe WiFi vulnerabilities that affected Linux and Android devices. Tonight at 7pm, I'll give a talk at @hip_berlin about them, how I found them and what I've learned while doing this (Spoiler alert: A lot).
CVE-2022-48196: Pre-Authentication Buffer Overflow on Netgear Routers securityonline.info/cve-2022-48196…
Rachel Ko @rachelko
571 Followers 2K Following (Opinions are mine) Trail Runner & Sr Tech Recruiter at @MagnetForensics (Grayshift); https://t.co/K5OTKQXksN…
Nash N @x41x41x1000
34 Followers 2K Following "Believe me I know when you leave New York you go nowhere". -Kid Creole and the Coconuts
High Peaks Cyber @HighPeaksCyber
9 Followers 3 Following
Luca Bruno @lucabruno
787 Followers 236 Following Engineer, Rust/Go developer, enthusiast Debian and FLOSS supporter. Previously at @deno_land, @CoreOS, @RedHat. → @[email protected]
ZeusBox @Zeusb0x
778 Followers 351 Following Playing with Pandora's box. Sometimes it's better not to open it. Sometimes, it's better not to know.
dmolnar @dmolnar
2K Followers 5K Following I like security. He/him. Supporting scaling security superpowers at Meta (Facebook). We're hiring across Meta Security, DMs open.
Alex Brenon @DootBoi73
0 Followers 54 Following
Ryan Wu @rwu646
4 Followers 5 Following
Eric @panicopticon@in... @panicopticon
75 Followers 593 Following @[email protected] / @[email protected]
Anil Kurmus @kurmus
958 Followers 691 Following Systems Security @IBMResearch. Speculative exec, kernels, filesystems, exploitation, mitigations. Opinions are mine only. 0x381A1757. @[email protected]
Jason Syversen @JSyversen
2K Followers 1K Following Husband/Dad, CEO @SportsVisioAI, GP @10XVP Founded Siege Technologies, former hacker and @DARPA PM Jsyversen on LinkedIn and Bluesky too
Moritz Lipp @mlqxyz
3K Followers 420 Following
L @espnshade
66 Followers 101 Following
Straw Paws @strawpawstoy
31 Followers 80 Following Straw Paws™ combines the sippy cup every kid needs with the plush animal every kid loves! Check it out at: https://t.co/zRZJ1XSoE3 via @YouTube
Ben Koller @__bkoller
94 Followers 456 Following
A.C. @costinandrei
688 Followers 3K Following CEO/co-founder @binareio; Senior Lecturer/Assistant Professor @it_jyu; Creator/Chief Visionary @FirmwareRE
Yushi OMOTE @ysmoo
186 Followers 122 Following Ph.D. of Engineering. Rustacean. C++ black magician. Pythonista. x86 enthusiast. Not Sushi. Love talking with software, hardware and humans all over the world.
Laura Blake @LauraBlake6
16 Followers 78 Following
Taxation is Theft �... @scottleuenberg1
691 Followers 825 Following Let us not love in word, neither in tongue; but in deed and in truth. 1 John 3:18
Seth Jenkins @__sethJenkins
2K Followers 116 Following Project Zero Security Researcher - Hang glider pilot - Jesus Follower @[email protected]
Palash Oswal @oswalpalash
726 Followers 708 Following Alum @inicmu || ctfs with PPP/MMM || volunteer @picoCTF || kernel pwn enjoyer
Sam Curry @samwcyo
98K Followers 1K Following
0xor0ne @0xor0ne
82K Followers 514 Following | CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | My Tweets, My Opinions :) |
Łukasz @maldr0id
12K Followers 956 Following Military-grade @Android malware reverse engineer @Google || "Tom Brady of malware strings analysis" - @MalwareTech || Tweets are my own opinions || he/him ✨🌈🦄
Ptrace Security GmbH @ptracesecurity
58K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
Intigriti @intigriti
195K Followers 657 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Stephen Sims @Steph3nSims
24K Followers 835 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/CadJehomsU
Romain THOMAS @rh0main
4K Followers 956 Following No longer here. https://t.co/7pANImx70w https://t.co/uhAhqoJWhH https://t.co/9MSpkLkKPz
Dimitri 0s @Ch0pin
4K Followers 44 Following Senior Security Researcher @Microsoft. Developer of https://t.co/z2jkgIV7Iy
reverseame @reverseame
21K Followers 1 Following RME-DisCo research group from University of Zaragoza. Special interest on software and systems security. Link to our Telegram channel: https://t.co/UmkcXVG8MU
Andy - @G33KatWork@in... @G33KatWork
4K Followers 665 Following I more or less left Twitter. The Musk is too musky.
Disconnect3d @disconnect3d_pl
3K Followers 691 Following Security Engineer at @trailofbits. Pwndbg maintainer, justCatTheFish CTF team captain. Opinions are my own =)
Thomas King - @thomas... @ThomasKing2014
2K Followers 461 Following Android/Browser Vulnerability Research, Reverse Engineering. Mastodon: @[email protected]
DefenseInnovationUnit @DIU_x
15K Followers 1K Following Defense Innovation Unit (DIU) accelerates commercial technology for national security. Retweet does not imply endorsement
ETenal @ETenal7
1K Followers 320 Following Image Maker • Phd in Cybersecurity• 中文/English • Security Researcher at @microsoft
Nicolas Krassas @Dinosn
147K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW3
Samuel Groß @5aelo
24K Followers 502 Following Working on Project Zero, Big Sleep, and V8 Security. Personal account. Also @[email protected] and https://t.co/aVitnPjBie
Mohamed Tarek Ibn Zia... @M_TarekIbnZiad
267 Followers 374 Following Research scientist at NVIDIA. PhD from Columbia University. Research in Systems Security & Computer Architecture. Opinions are my own.
A̶n̶d̶r̶e̶w̶ ̶... @arw
3K Followers 2K Following An Englishman in San Francisco. Director of security for Google Chrome. https://t.co/vaOsTQyluD over on bluesky.
knott k ding @knottkding
434 Followers 386 Following Mostly I do Reverse engineering, Vulnerability Research and Exploit Development.
Pawel Wieczorkiewicz @wipawel
1K Followers 381 Following Low Level Security: CPUs, Kernels, Hypervisors and the like. I mostly break stuff. Offensive side of things.
Daax @daaximus
12K Followers 396 Following reverse engineering • secure processor design • system emulation • µarch bugs @the_secret_club
IARPA @IARPAnews
17K Followers 499 Following The official Twitter account for IARPA. A center of the Office of the Director of National Intelligence, IARPA invests in high-risk, high-payoff research.
Clint Gibler @clintgibler
22K Followers 563 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletter
Sébastien Dudek 📡 @FlUxIuS
4K Followers 2K Following CEO of @PentHertz. Networks and computer security engineer in #Wireless systems, #SDR, #Mobile, #CarHacking and #IoT
Zhenpeng Lin @Markak_
3K Followers 383 Following Ph.D., CTF player @Nu1L_team, now @StrawHat_CTF. #Pwn2Own winner. Author of #DirtyCred #Badiouring
Will Harris @parityzero
4K Followers 803 Following Chrome Security gnome. I work on the sandbox and local data protection on Windows. @parityzero.99 on signal. Opinions here are my own!
bettercap @bettercap
16K Followers 2 Following The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks - made with ❤️ by @evilsocket
Simone Margaritelli @evilsocket
47K Followers 2K Following Music, cybersecurity, open source and AI • Author of bettercap, pwnagotchi, opensnitch, bleah, legba and a few other things.
Catalin Cimpanu @campuscodi
107K Followers 2K Following Parked account. I don't usually post here on a regular basis. Cybersecurity reporter. Check me out on BlueSky and Mastodon.
James Forshaw @tiraniddo
49K Followers 339 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
Johnathan Norman @spoofyroot
5K Followers 335 Following Security research and engineering lead at @microsoft. on mastodon: https://t.co/YfJkktByFv and @spoofy.bsky.social not posting here anymore.
Trend Zero Day Initia... @thezdi
83K Followers 16 Following Trend Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
Operation Zero @opzero_en
6K Followers 0 Following The only Russian-based zero-day vulnerability purchase platform.
offensivecon @offensive_con
26K Followers 2 Following OffensiveCon Berlin is a technical international security conference focused on offensive security only. Organised by @Binary_Gecko. Stay tuned #OffensiveCon26.
Impalabs @the_impalabs
749 Followers 2 Following Research-oriented security company @[email protected]
Check Point Research @_CPResearch_
24K Followers 119 Following Fighting cyber threats one research at a time. News from Check Point’s (@checkpointSW) Research team.
Alex Hude @getorix
4K Followers 144 Following Security Researcher ❖ Hardware Hacker ❖ Quality tools writer ❖ Mobile Engineering Director @ Corellium
Ricerca Security @RicercaSec
3K Followers 0 Following Offensive Security Professionals | VAPT, R&D, Consulting, Training | Recognized by government agencies, Fortune 500s | Japanese: @RicercaSec_JP
matteyeux @matteyeux
10K Followers 215 Following
Saar Amar @AmarSaar
19K Followers 361 Following Reversing, exploits, {Windows, Hyper-V, *OS} internals, mitigations. Apple SEAR. Opinions are my own. @[email protected]
Maddie Stone @maddiestone
62K Followers 805 Following Security Researcher. Previously Google Project Zero and TAG | 0days all day. Love all things bytes, assembly, and glitter. she/her.
@Pwn20wnd @Pwn20wnd
209K Followers 290 Following Hacker @unc0verTeam. Jailbroke iOS 11.0-14.8. Helping Apple make iOS more secure by unc0vering real security issues. #unc0verTrends for United States
You might like
