-
Tweets641
-
Followers77
-
Following114
-
Likes196
This weekend, I updated the Windows syscall tables on my blog and GitHub (github.com/j00ru/windows-…) with the upcoming Windows 10 1903 (19H1). There's one new ntoskrnl syscall – NtCreateCrossVmEvent (STATUS_NOT_IMPLEMENTED), with 8 removed and 24 added in win32k since 1809.
Remote Code Execution on most of all Dell machines d4stiny.github.io/Remote-Code-Ex…
SOURCES ARE OUT! We get this a lot, most of the java sources are already out, it went out along with the released zip. Just look for *-src.zip files.
Happy to announce all the chapters of bootkits.io now available in Early Access (~600 p). 4 years of writing/rewriting. The book almost a double the size from the original proposal (rootkits/bootkits, UEFI threats and modern forensics) Thx @billpollock and @nostarch!!
F-Secure Anti-Virus: Remote Code Execution via Solid RAR Unpacking (RCE as NT AUTHORITY\SYSTEM 😱) landave.io/2018/06/f-secu… #antivirus #vulnerability
iPhone X 11.3.1 kernel exploit simple PoC for the bug from my 30th May tweet: github.com/potmdehex/mult… I am not a developer and promise no further commits. Deres tur, ETA boys
#CVE-2018-8120 analysis and exploit code github.com/bigric3/cve-20…
Leveraging a double-free in JPEG image to corrupt JS objects using a heap spray in Adobe Reader, and then call gate to get in ring 0 of windows. welivesecurity.com/2018/05/15/tal… Thx @cherepanov74 CVE-2018-4990 and CVE-2018-8120
More on security of Intel S1200 server motherboard series (thread: ). it seems there's no Boot Guard and PRx flash write protection configured, so, *any* System Management Mode vulnerability means full platform firmware pwnage [1/2]
CVE-2018-8897 (POP SS CPU bug <3). POC + Write-up: blog.can.ac/2018/05/11/arb… Worse than Meltdown IMO but less coverage. Maybe because it doesn't have a cool name and logo ¯\_(ツ)_/¯ #YearOfCPUBugs
Demo exploitation of the POP SS vulnerability (CVE-2018-8897) leading to unsigned code execution with kernel privileges PoC: github.com/can1357/CVE-20… Writeup: blog.can.ac/2018/05/11/arb…
Arbitrary Code Execution At Ring 0 Using CVE-2018-8897: blog.can.ac/2018/05/11/arb…
Now that patches are out... See if you're vulnerable to CVE-2018-8897 on Windows: github.com/nmulasmajic/CV… (Precompiled binary at github.com/nmulasmajic/CV…) #infosec #security
Shout out to Andy Lutomirski(Linux) & Andrew Cooper(Xen) for doing additional testing and enlightening us to the fact that Intel is also vulnerable to a spurious #DB after SYSCALL, not just AMD. We've updated the paper to reflect this. everdox.net/popss.pdf
Hugo kudos to @0xNemi for discovering a huge cross-OS vulnerability in Intel and AMD processor architecture that leads to privilege escalation with a simple “pop SS”. This is way bigger than meltdown IMO ;-) cve.mitre.org/cgi-bin/cvenam…
cve-2018-8897 whitepaper triplefault.io/2018/05/spurio…
Welp, it turns out the #Meltdown patches for Windows 10 had a fatal flaw: calling NtCallEnclave returned back to user space with the full kernel page table directory, completely undermining the mitigation. This is now patched on RS4 but not earlier builds -- no backport??
Here's @ryHanson's writeup of a cool privilege escalation bug he found in CylancePROTECT. buff.ly/2KouDf3
We've released a bunch of symbols for Hyper-V to make it easier to hunt for bugs. We want your bug submissions! technet.microsoft.com/en-us/mt784431…
Keenlab’s Bottle of Red Pills goo.gl/7RWnqP
Ledane @Ledane362647
34 Followers 1K Following
PocketSIEM @PocketSIEM_
2K Followers 4K Following International SOC & SIEM service provider based in the UK. Cyber defence has literally never been this SIEMple #SOC #SIEM #infosec #CyberSecurity #Vuln
madsys @madsys1
34 Followers 1K Following Phrack author, member of Team Hardcore Matrix, UAP researcher
jmp $ @JumpDollar
6 Followers 267 Following
Ian Kronquist @IanKronquist
481 Followers 435 Following Operating Systems & Security. Works on iOS & MacOS. Likes hiking & cooking. Also @[email protected]
Siege Technologies @SiegeTech
245 Followers 235 Following Siege Technologies is a pioneer of multi-purpose cybersecurity products & services that enables customers to leverage both offensive and defensive technologies.
_ @ia_
382 Followers 229 Following
Eric @panicopticon@in... @panicopticon
75 Followers 594 Following @[email protected] / @[email protected]
函数式 @CH2Y7HJyviE51a0
0 Followers 12 Following
Santarpan Sinha @Santarpansinha
14 Followers 470 Following
Davide Tassone @davidetassone_
16 Followers 244 Following
don vito @don_vito2015
1 Followers 199 Following
Sergio @NaxoneZ
725 Followers 2K Following Threat Intelligence, #Cybercrime, #Malware Analyst, Digital #Forensics and Incident Response. All opinions expressed here are mine only.
cr @bureau300
6 Followers 242 Following
clem @clavoillotte
1K Followers 760 Following
Danny @dannyc_dev
623 Followers 388 Following
`Ivan @Ivanlef0u
11K Followers 4K Following
Tony Meehan @snowboardvstree
1K Followers 4K Following CTO @prequel_dev. Former @Elastic, @EndgameInc, and NSA/TAO.
Shikata ga nai @Shikata_ga_naii
269 Followers 2K Following *Shell lover. Nothing can be done about it!
Srinivas Chandupatla @schandupatlas
394 Followers 5K Following
Rahul Pratap Singh @0x62626262
197 Followers 304 Following OSCP|Penetration Testing|Exploit Development (Opinions are mine alone and do not represent my employer)
Sam Hamilton @SamuelNHamilton
5 Followers 80 Following
Ben Koller @__bkoller
94 Followers 456 Following
WILLIAM ROBERTS @badcc0de
3 Followers 1 Following
Adeoye Abodunrin-PMP,... @AdeoyeAbodunrin
4K Followers 5K Following MBA|Futurist|Cybersecurity|Cyberforensics|Threat Intelligence|Agile Coach| Life Design& Intuitive Coach|Purpose&Direction Strategist|Project & Process Director|
specialist322 @specialist322
15 Followers 744 Following
Fernand Lone Sang @_kamino_
846 Followers 2K Following Security Researcher, contribute to @ge0n0sis on my spare-time. Former: @quarkslab
Anshul Rai Jain @ANSHULRAIJAIN
118 Followers 1K Following #security #Analyst @innefu_labs, Big Fan of #Naruto Who Cares? Run 4D Life, Hakuna Matata.
Viviry Tech @vivirytech
297 Followers 3K Following Pen Testing | Reverse Engineering | Malware Analysis
JIA MA @cs_jia
3 Followers 8 Following
Maggie @chubbymaggie
264 Followers 2K Following
EriCSN @Sirveinvaz
45 Followers 91 Following
Jim Huang @jserv
12K Followers 7K Following "A hacker, a lecturer, a father" // Adjunct faculty at @NCKU_official
phant0m @phant0m_e17
992 Followers 1K Following Security researcher / Reverse Engineering / Old schoolz stuffs https://t.co/v89Bz7g5Tt
Jevin Sweval @jevinskie
2K Followers 5K Following KEYWORDS ➡︎ cats, hacking, reverse engineering, LLVM, binary analysis, side channel analysis, FPGAs, NFC/EMV tricks Previously Pay Security he/him
Storage Channel @StorageChannel
201 Followers 5K Following Garbage disposal in PUBLIC for Fortune 500 companies. P.S. I am selling used paper with red markings "CONFIDENTIAL"
Barkly @barklyprotects
874 Followers 620 Following Barkly advances endpoint security and replaces legacy antivirus by combining the strongest, smartest protection with the simplest management.
John McNichol @JohnMcNicholUSA
11K Followers 610 Following Father, Grandfather, Investor. Retired Military and Veteran. Former financial education coach.
Ian Beer @i41nbeer
48K Followers 147 Following
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
David Weston (DWIZZZL... @dwizzzleMSFT
25K Followers 2K Following Corporate Vice President, OS Security and Enterprise @Microsoft
Matt Miller @epakskape
12K Followers 649 Following Killing bug classes and breaking exploits as part of @msftsecresponse. Adding more entropy to the Internet. https://t.co/J8GCGurGP3
Nick Peterson 🇺�... @nickeverdox
3K Followers 273 Following @RiotGames - anticheat team. Opinions expressed are obviously my own. https://t.co/foRcgwMV3U
Nemi @0xNemi
3K Followers 184 Following Protecting @Roblox. Former CTO of Byfron, prev. @riotgames @Blizzard_Ent
Alisa Esage Шевч�... @alisaesage
38K Followers 101 Following Independent Hacker & Researcher, Owner of Zero Day Engineering @zerodaytraining • Pronounced ‘is edge’
Adam Chester 🏴�... @_xpn_
36K Followers 498 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOllCEu | Insta at https://t.co/PqR6CZPwjl
Rian Quinn @rianpquinn
41 Followers 30 Following
Min(Spark) Zheng @SparkZheng
24K Followers 84 Following Android/iOS Senior Security Engineer @ Alibaba, CUHK PhD, a member of Blue-lotus and Insight-labs, worked in FireEye , Baidu and Tencent.
Ulf Frisk @UlfFrisk
8K Followers 981 Following IT-Security Minion | https://t.co/N1gIUL5rKc | https://t.co/XbBOnQPYoK | DMA | PCILeech | MemProcFS
Saar Amar @AmarSaar
19K Followers 360 Following Reversing, exploits, {Windows, Hyper-V, *OS} internals, mitigations. Apple SEAR. Opinions are my own. @[email protected]
Azeria @Fox0x01
122K Followers 597 Following Sneaky bit flipper | CEO @azeria_labs | Author of “Arm Assembly Internals & RE” @BlueFoxBook | Adjunct Professor @SAISHopkins | Forbes 30u30
Erik Bosman @brainsmo... @brainsmoke
5K Followers 532 Following PhD student @ @vu5ec / hardware bugs / LEDs / active account at @[email protected]
Shapeoko @shapeoko
3K Followers 260 Following A complete CNC machine that cuts woods, plastics, metals and comes with all the software you need to get up and running.
Jevin Sweval @jevinskie
2K Followers 5K Following KEYWORDS ➡︎ cats, hacking, reverse engineering, LLVM, binary analysis, side channel analysis, FPGAs, NFC/EMV tricks Previously Pay Security he/him
Winston Moy @WinstonMakes
1K Followers 840 Following Maker, adventurer, aerospace enthusiast. 🛠🏔🚀🇺🇸🇹🇼 (All opinions expressed are my own.)
Malware Unicorn @malwareunicorn
168K Followers 3 Following Mostly on @malwareunicorn.bsky.social @Straikerai. Ex-Microsoft. Ex-Meta.
Stephanie Hurlburt @sehurlburt
32K Followers 0 Following Businesses: @_binomial @artbysehurlburt Instagram: https://t.co/y5mbpWN1Ek Friends/private: @sehurlburt_priv 🏳️🌈 She/her
Carbide3d @carbide3d
2K Followers 93 Following We manufacture the Nomad 883- a ready-to-run CNC mill that's at home in any environment.
WILLIAM ROBERTS @badcc0de
3 Followers 1 Following
Joanna Rutkowska @rootkovska
24K Followers 130 Following Long-term navigation at https://t.co/CfQ8ne1BLB & architect of @wildlandio. Previously founder of @QubesOS & Invisible Things Lab.
RISC-V International @risc_v
32K Followers 490 Following RISC-V International is the non-profit home of the open standard RISC-V Instruction Set Architecture (ISA), related specifications, and stakeholder community.
KT @koczkatamas
4K Followers 927 Following Security Engineer @ Google (personal account, opinions are my own!). ex-Tresorit. Ex-captain of @SpamAndHex CTF team.
Gal Beniamini @laginimaineb
5K Followers 54 Following Co-founder @ AAI. TCS PhD. Ex Project Zero. Tweets are my own (who else would write them?).
SpaceX @SpaceX
40.0M Followers 120 Following SpaceX designs, manufactures and launches the world’s most advanced rockets and spacecraft
Motherboard @motherboard
215K Followers 127 Following Tech by @VICE. Tip us securely: https://t.co/TDmsbmarG7…
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
volatility @volatility
22K Followers 10 Following Official account of the Volatility Memory Analysis Project and Windows Malware and Memory Forensics Training. https://t.co/A4TZ1FOjpg
domas @xoreaxeaxeax
9K Followers 73 Following // hacker math & stuff // M/o/Vfuscator // sandsifter // project:rosenbridge // ..cantor.dust.. // REpsych // the memory sinkhole // nightshyft //
LegbaCore @legbacore
1K Followers 2 Following Deep system security startup by @XenoKovah and @CoreyKal
Xeno Kovah @XenoKovah
13K Followers 75 Following Interested in reverse engineering, firmware, bluetooth, trusted computing, and training. Founder of OpenSecurityTraining2 https://t.co/slK2fsMRwU
Dr. Buzz Aldrin @TheRealBuzz
1.5M Followers 183 Following Apollo XI Astronaut, Moonwalker; Gemini12; West Point; USAF Brig Gen; Korean War Vet; MIT ScD; Human SpaceFlight Inst Founder; Advancing concepts to reach Mars.
HD Moore @hdmoore
87K Followers 509 Following Founder & CEO of runZero (@runZeroInc), previously the founder and lead developer of Metasploit, a CSO, a consultant, and the head of various research teams.
sergey bratus @sergeybratus
6K Followers 2K Following The cat is the Otocolobus Manul, https://t.co/Xswt7Vp2F1 . Manul is the perfect privacy mascot. All views & opinions are my own & personal.
Binni Shah @binitamshah
141K Followers 165 Following Linux Evangelist, Malwares, Security enthusiast , Investor, Contrarian , Philanthropist , Reformist , Sigma female 🦋 https://t.co/WOvf41tMKV
Eric @panicopticon@in... @panicopticon
75 Followers 594 Following @[email protected] / @[email protected]
I Am Devloper @iamdevloper
409K Followers 0 Following just your friendly neighbourhood printer fixer 💸 promotional content: https://t.co/mz9fc9Cprl
Synapse Labs @Synapse_labs
124 Followers 7 Following We develop effective and proven security strategies for your organization.
dragosr @dragosr
24K Followers 9K Following Stop, Think, Pwn! (see also @[email protected], https://t.co/BjclXYWQ9R for alternate)
Trends for United States
You might like
