Posts
2524
Following
647
Followers
1461
"I'm interested in all kinds of astronomy."
CVE-2024-41928: VM escape in FreeBSD's bhyve hypervisor via TPM device passthrough

https://www.freebsd.org/security/advisories/FreeBSD-SA-24:10.bhyve.asc?s=09
0
6
7
repeated
Edited 10 months ago

Frida 16.5.0 adds native breakpoint and watchpoint APIs. There was some attempts to implement those in DWARF and already, but having them in the stock SDK makes them way more comfortable to use and stable https://frida.re/news/2024/09/06/frida-16-5-0-released/

1
3
0
repeated

NSA's No Such Podcast: How We Found Bin Laden: The Basics of Foreign Signals Intelligence
Current and former senior NSA officials, who were involved in the search for Osama bin Laden after the September 11, 2001 terrorist attacks, describe NSA's role in the foreign signals intelligence to help find him. You can read the transcript as a 15 page PDF

1
3
0
[Pwn2Own 2024] DOMArrayBuffer confused about ownership of backing buffer CVE-2024-3914
https://issues.chromium.org/issues/330759272?s=09
0
3
4
repeated
repeated

Hmm, "apps" in what could go wrong?!

0
1
0
repeated
repeated

IDA Pro is moving to a subscription model on 30 Sep 2024.

NOW is the time to obtain or renew your perpetual (non-subscription) license.

IDA Pro 8.x will be the last non-subscription version.

4
9
0
repeated

Had to verify. And yes. Kernighan and Ritchie really did this. TIL :)

6
14
0
repeated
Edited 10 months ago

The Internet Archive lost its appeal in the Hachette case. What a huge, devastating loss for all of us.

5
25
0
repeated
Edited 10 months ago

I always wanted to have IDA's graph-overview for source-code.
So I created a small VS-Code extension to do that for me.

https://marketplace.visualstudio.com/items?itemName=tamir-bahar.function-graph-overview

It currently supports Go and C; adding more languages should be relatively straightforward.

1
4
1
CVE-2024-30051 dwmcore.dll Heap Buffer Overflow (PoC)

https://github.com/immortalp0ny/mypocs/tree/master/cve-2024-30051?s=09
0
0
1
repeated

This must be the ultimate

Dual SID chips, tube amp, full mechanical keyboard.

0
3
1
repeated
Edited 10 months ago

Cisco security advisories includes a zero-day:

EDIT: What @BleepingComputer took away out of this is that CVE-2024-20439 is a backdoor admin account: Cisco warns of backdoor admin account in Smart Licensing Utility

1
2
0
Towards Optimal Use of Exception Handling Information for Function Detection

https://arxiv.org/pdf/2104.03168
0
1
2
repeated

✧✦Catherine✦✧

(indistinctly yelling at the computer)

this is a series expansion of a natural logarithm

1
1
0
Show older