ret2eax @ret2eax
#VulnResearch #ReverseEngineering #ExploitDev | 🥷🏽 homecrew.dev Australia Joined March 2016-
Tweets41
-
Followers353
-
Following387
-
Likes288
My first V8 sandbox bypass vulnerability has been fixed, and I will continue to discover more. chromium.googlesource.com/v8/v8.git/+/7f…
Great energy from @SpaceX fans in Mexico
In light of the issue page for CVE-2024-5274 being made public. Me and @buptsb have decided to make our exploit public. It's a bit different than the issue page POC. github.com/mistymntncop/C…
CVE-2024-4947, another weird looking oob write...
The slides of my Hexacon talk « Attacking Safari in 2022 » are available there: synacktiv.com/sites/default/…
Just dropped my exploit with new cross-{cache,bucket} techniques (I love the creativity of kernel exploits, it gave me a very cool experience with SLAB allocators), the coolest part for me is the exploit, basically almost any memory corruption in Blink/Chrome can achieve RCE :D
Just dropped my exploit with new cross-{cache,bucket} techniques (I love the creativity of kernel exploits, it gave me a very cool experience with SLAB allocators), the coolest part for me is the exploit, basically almost any memory corruption in Blink/Chrome can achieve RCE :D
I'm very excited to share my blogpost series (including PoC code) about a remote, interactionless iPhone exploit over iMessage: googleprojectzero.blogspot.com/2020/01/remote…
Great blog post by @ret2eax on analysing and exploiting CVE-2020-16040 (Chrome's V8 heap corruption) homecrew.dev/posts/cve-2020… #chrome
Rough copy of the FORCEDENTRY code is now available. Most relevant code is here: github.com/jeffssh/CVE-20… Blog soon!
Full chain analysis for CVE-2022-4262 to commemorate my time spent on this non-trivial type confusion! Shoutout to @mistymntncop for his crafted artful exploit and discussion with me! And shoutout to @_clem1, @5aelo, @alisaesage for their prior work :). github.com/bjrjk/CVE-2022…
Chromium [WIP] internal fuzzing map by source code directory, official dashboard analysis.chromium.org/coverage/p/chr…
Some really cool recent work by @_tsuro: * We now have a V8 exploit bounty ($10k) in the form of the V8CTF: github.com/google/securit… * A blog post about our CFI plans: v8.dev/blog/control-f…
These #Phrack articles by @5aelo are the best primers on attacking #JavaScript engines A case study of JavaScriptCore and CVE-2016-4622 phrack.org/issues/70/3.ht… #Exploiting Logic #Bugs in JavaScript JIT Engines phrack.org/issues/70/9.ht…
Sharing another V8 Sandbox design document more widely: docs.google.com/document/d/1CP… This one discusses how to protect code pointers - probably the most performance sensitive part touched by the sandbox - with (almost) no performance overhead.
CVE-2023-3079 is tweetable :-). function set(arr, key, val) { arr[key] = val; } function leak_hole() { for(let i = 0; i < 10; i++) { set(arguments, "foo", 1); } set([], 0, 1); set(arguments, 0, 1); return arguments[1]; } %DebugPrint(leak_hole());
LaurenFrank @9rDoM63Abqk28
4 Followers 369 Following
LouiseWillard @RBbVy5eFCr6y4L
6 Followers 339 Following
HildaBack @Sd83cL4p59cRJ
12 Followers 731 Following Confidence is not “they will like me.” Confidence is “I’ll be fine if they don’t.”
Klara @FelicitaJa8213
61 Followers 2K Following
Pefoop @Pefoop6658
30 Followers 1K Following
Swarqorm @Swarqorm249904
8 Followers 672 Following
GracefulCloud @DeniseAnde65746
11 Followers 295 Following ⚡ Transform Assets Fast! Securely Aim for 50-100k USDT Daily Income. Rapid, High-Yield Earning Pro cess. Farm with Confidence Today! 💰🛡️
Simone Treutel @SimoneTreu12850
79 Followers 4K Following
Lawndees @Lawndeesp_74iZ
45 Followers 4K Following
Slewxoosm @SlewxoosmNYC81
30 Followers 4K Following
AliceMay @N68vWY3zy32069
62 Followers 7K Following
Freslausl @Freslausl3vgYb
37 Followers 4K Following
McThore @McThore0dMzSYU
39 Followers 4K Following
Titus @922i1DJRz57vIX
72 Followers 7K Following
Thyrarti @ThyrartizWykVw
45 Followers 4K Following
KellyBack @Fz304xEg6o1SW
93 Followers 7K Following
Thune @ThuneQLUJsi
91 Followers 7K Following
Wanda @SWDO19hdbxH1xE
83 Followers 7K Following
DonnaCowper @HGewETBCt9UoH0
82 Followers 7K Following
Nously @NouslyR18
44 Followers 4K Following
DarleneTours @rqDbyWsSq25WH5
77 Followers 7K Following
Teese @Teese5h9
56 Followers 1K Following
Glasnair @GlasnairZjaNPU
40 Followers 4K Following
Soorew @SoorewMD1E
39 Followers 3K Following
ClaireTyler @LijGWAc82jwx9b
29 Followers 4K Following
0x1nf0s3c @0x1nf0
44 Followers 590 Following CybersSecurity Lover. I share stuff about hacking. #CRTP #EJPT
Simon Laureti @SimonLaureti
8 Followers 65 Following
Jess @funatahisa16309
44 Followers 4K Following
Abhinav Patel @AbhinavPat91199
2 Followers 74 Following
Bika hua patrkar @Bikahua_patrkar
2 Followers 74 Following
Paolo Puzzella @PaoloPuzzella
7 Followers 253 Following
Beulah @misoraikuk4966
24 Followers 2K Following
もりぬい @morinui121217
28 Followers 3K Following
Toby @tobiishiju72425
83 Followers 7K Following
Barnaby Jack @barnaby_jack
4K Followers 123 Following
TracketPacer @TracketPacer
58K Followers 396 Following 🚀 rockit network engineer 👩🏼💻🛜 weird use cases & silly tech | find me on a platform not run by a nazi 👋🏼
domas @xoreaxeaxeax
9K Followers 73 Following // hacker math & stuff // M/o/Vfuscator // sandsifter // project:rosenbridge // ..cantor.dust.. // REpsych // the memory sinkhole // nightshyft //
Ross Coulthart @rosscoulthart
179K Followers 1K Following Investigative journalist News Nation TV & host of REALITY CHECK https://t.co/fNF4AaR9Be. [email protected] https://t.co/eLE0NsLp4q
hashkitten @hash_kitten
2K Followers 174 Following vulnerability research @assetnote // hacking // codegolf // ctf with 🛹🐶
Fit Moral @MoralFitnezz
208K Followers 96 Following Your guide to stretching and flexibility training | DM for Credit/Removal
vids that go hard @vidsthatgohard
1.3M Followers 3K Following video archive, memes, music, anime and anything I find cool sponsored by @degencom
Shawn Ryan @ShawnRyan762
1.1M Followers 1K Following FMR Navy SEAL/CIA Contractor, Host of the @shawnryanshow Guest Bookings/Press @SRS_Jeremy
Russell Crowe @russellcrowe
2.8M Followers 329 Following older than my children, younger than my parents, get the odd job. On Instagram too as @RussellCrowe.
Shia LaBeouf @thecampaignbook
458K Followers 0 Following
arya @aryafah
9K Followers 793 Following journo babe in baku prev @skynews @aljazeera // opinions are my own
peterpan0927@infosec.... @Peterpan980927
2K Followers 352 Following Mobile Security Researcher @starlabs_sg
MalwareTech @MalwareTechBlog
277K Followers 1 Following Not here anymore. Profiles: https://t.co/sFoOuGmYK2
Yasantha Rajakarunana... @yasantha62
12K Followers 450 Following Technologist, Scientist, Engineer. Plain living, high thinking..
ₕₐₘₚₜₒₙ... @hamptonism
168K Followers 682 Following quantitative finance │ defense tech │ ai/ml. Atmosphere Modeling @MenthorQpro. -@hamptonlibrary.
embersunn @embersunn
30K Followers 490 Following Cloud Software Engineer in MedTech | Tech Commentator | Java hates you too
Tereza Tizkova @tereza_tizkova
7K Followers 328 Following growth & founding member @e2b | math grad. | i like cheese
h0mbre @h0mbre_
15K Followers 641 Following # Exploit Reliability Engineer # Developing a full-system snapshot fuzzer: https://t.co/mfVXhwoGYD # Avi: https://t.co/3fsQfVprCf
World of Statistics @stats_feed
4.3M Followers 445 Following There are three kinds of lies: lies, damned lies, and statistics. Sister page of @engineers_feed
Rebane @rebane2001
7K Followers 2K Following 🇪🇪🏳️⚧️ | Archivist | 9 CVEs in Chrome | CSS noob | MapartCraft | Horse | rebane2001#3716 | Lyra 🦊 @[email protected]
Shift @Shiftreduce
2K Followers 1K Following
NVIDIA @nvidia
2.4M Followers 47 Following The official handle for NVIDIA. Blog: https://t.co/JAn5eKOTBT Support: https://t.co/6ln5FVnA2o All our social media: https://t.co/Uc56dL57Dh
Los Alamos National L... @LosAlamosNatLab
62K Followers 949 Following Meeting national security challenges with #science and #technology. (Note: RTs and MTs do not imply endorsements.)
SinSinology @SinSinology
13K Followers 674 Following Pwn2Own 20{22,23,24,24.5,25,25.5}, i look for 0-Days but i find N-Days & i chase oranges 🍊
Boris Larin @oct0xor
18K Followers 655 Following Former console hacker (PS3/PS4). Hunting in the wild 0-days at Kaspersky GReAT. All tweets are my own.
ludwig @ludwigABAP
44K Followers 2K Following God’s chosen principal engineer. What is impossible for you is not impossible for me.
Graham Hancock @Graham__Hancock
579K Followers 112 Following Presenter of the hit Netflix docuseries “Ancient Apocalypse”, and author of many international bestselling books. Full list: https://t.co/4KGIwOmV1W
Randall Carlson @randallwcarlson
150K Followers 39 Following Check out the latest episode of Squaring the Circle👇
Ethical Skeptic ☀ @EthicalSkeptic
335K Followers 2K Following Managing Partner/CEO Corporate & National Strategy Systems Science & Engineering US Naval Officer (ONI) ENTX Ponerologist Author of ECDO Earth Cataclysm Theory
andi (twocents.money) @Nexuist
24K Followers 3K Following In the beginning Bill Clinton gave him a green card. This has made a lot of people very angry and been widely regarded as a bad move • @twocentinc
Dr Jordan B Peterson @jordanbpeterson
6.1M Followers 2K Following Best-Selling Author | Clinical Psychologist | #1 Education Podcast | Co-founder of @petersonacademy | Order my new book "We Who Wrestle With God" here:
Shawn Ryan Show @ShawnRyanShow
384K Followers 154 Following Hosted by @shawnryan762. Guest appearances @SRS_Jeremy.
. @R00tkitSMM
10K Followers 713 Following
jro @junr0n
850 Followers 402 Following CTFs with @NUSGreyhats Blog: https://t.co/FomX8jqZnY Also @[email protected]
Ricki Burke @CyberSecRicki
6K Followers 5K Following Cybersecurity Recruiter @ CyberSec People. Organizing Career Villages and Speaker @ Black Hat USA, Asia, BSides LV, BSides Canberra, BSides Melbourne
[email protected] @r3tr074
1K Followers 552 Following Security research | https://t.co/SFZNGja5pn | CTF pwn/rev @eltctfbr + @r3kapig | yes, I'm the browser guy
Ian Beer @i41nbeer
48K Followers 147 Following
Cody Gallagher @cogallag
125 Followers 0 Following
HackSys Team @HackSysTeam
10K Followers 628 Following Vulnerability Research, Kernel Exploitation, Reverse Engineering, Exploit Development, Program Analysis, Malware Research, Web, Machine Learning
UNPLUGGED PERFORMANCE @UnpluggedTesla
39K Followers 650 Following The global leader of Tesla performance upgrades. Est.2013. We make bespoke complete cars and upgrade parts next-door to Tesla & SpaceX in Hawthorne, CA
Andy Nguyen @theflow0
61K Followers 446 Following The opinions stated here are my own, not those of my company.Trends for United States
You might like
