You can watch my #r2con2025 talk here:

When worlds collide: r4ghidra

https://www.youtube.com/watch?v=NbSiNBaBgM4

Slides:

https://scrapco.de/dataslate/r2con-r4ghidra.pdf

@Viss @cR0w @neurovagrant @hrbrmstr My question is if that key in the PoC is the same on all systems??

@rogeragrimes We absolutely failed to explain laypeople what numbers they hold in their pockets must be kept secret (it's not even easy to figure it out as they're plainly visible on most cards).

What are the most well-known private keys?

The most (in)famous ones I’ve heard of are:

• the Debian OpenSSL weak keys
• the TI-83 Plus RSA key - factorized by Benjamin Moody
• the Sony PlayStation 3 ECDSA signing keys - recovered by fail0verflow

Anything else?

Here’s the link for today!
https://radare.org/con/2025/day1 #r2con2025

Chinese companies provide Europe’s critical energy infrastructure: insecure and foolishly dangerous. There are still European alternatives but we need to act now. Together with colleague @MiriamMLex we are circulating an urgent letter for immediate action:
https://www.politico.eu/article/europe-solar-industry-having-huawei-moment

$1,024,750 - 73 unique bugs - a week of amazing research on display. #Pwn2Own Ireland had it all. Success. Failure. Intrigue. You name it. Congratulations to the Master of Pwn winners @SummoningTeam! Their outstanding work earned them $187,500 and 22 point. See you in Tokyo for Pwn2Own Automotive.

I was reading the diary of someone who was friends with a lot of famous Hungarian literary figures in the 1920s. All names associated with high literature and poetry.
At one point the diarist notes that they all used to devour crime novels like it was a competition, and they exchanged them amongst themselves.

I think my high school Literature class experience would have been different if they told us our great literary minds also read paperback fiction for fun.

#bookstodon #books

Apple SEAR is hiring offensive security researchers!

We’re looking for talented researchers across multiple areas of security.

Check out the job description here:
https://jobs.apple.com/en-us/details/200623813-2911/offensive-security-researcher?team=SFTWR

If you’re interested in low level systems like RTOS, firmware, coprocessors, embedded components, or microkernels, my team would especially like to hear from you.

Feel free to reach out if you have any questions.

#infosec

[RSS] exploits.club Weekly Newsletter 90 - Fuzzing Rust Subsystems, Pwn2Own Near Misses, Linux 1-Days, And More

https://blog.exploits.club/exploits-club-weekly-newsletter-90-fuzzing-rust-subsystems-pwn2own-near-misses-linux-1-days-and-more/

My talk about integrating #ReverseEngineering tools is to be broadcasted in a couple of hours for #r2con2025:

https://rada.re/con/2025/

I'll release a ton of code and will be around on Discord for questions and comments.

@bmaxv Now that you mention it I *really* start to suspect some fuckery between Ghidra and the filesystem because while I could get _some_ logs to a file these were also highly unreliable (like records just stopped appearing) so I could only rely on logging to Ghidra's console...

Theory: the output file got cached and I was looking at old output (which is weird because I only use `with open(...)` blocks)

So I just fought the weirdest bug in a while: lately #Ghidra provides a #Python scripting interface based on #Jpype (PyGhidra).

I had this script where I thought I fixed a bug by referencing X.y.z instead of X.z. Except nothing changed, the buggy behavior is still there (the file output contains garbage).

I add logging, the logs appear and show everything is fine.

Add more logs, exceptions even (to stop at a specific state). They run and show all is fine.

After I restart Ghidra the bug is gone.

To be clear: there must be some kind of bytecode caching that affects my object reference but does not affect additional logging/exception throwing??

Any ideas?

Programmer Gets Doom Running On a Space Satellite https://games.slashdot.org/story/25/10/23/2128244/programmer-gets-doom-running-on-a-space-satellite?utm_source=rss1.0mainlinkanon

This is maybe the biggest FINALLY in my career as a purveyor of Oddly Specific Objects: The Open Book is in prelaunch at Crowd Supply! But it's not the same old Open Book; we're launching the all-new, completely reimagined Open Book Touch with WiFi and Bluetooth support, a higher-resolution display, capacitive touchscreen, and frontlight with adjustable color temperature. Subscribe for updates here! https://www.crowdsupply.com/oddly-specific-objects/open-book-touch

My #ThinkPad started to give a humming sound when I touch it at a certain place. Any ideas?

Thanks to @disasmwinnie now you'll lose a bit less hair when testing Oracle Forms:

https://github.com/silentsignal/oracle_forms/pull/3#issuecomment-3434380477

#pentesting

NEW: The U.S. govt accused Peter Williams, ex general manager of hacking tool maker L3Harris Trenchant, of stealing trade secrets and selling them to buyer in Russia.

As we reported earlier this week, Trenchant was investigating a leak of internal tools this year. At this point, it's unclear if that investigation is related to the accusations against Williams.

https://techcrunch.com/2025/10/23/u-s-government-accuses-former-l3harris-cyber-boss-of-stealing-trade-secrets/

Privescing a Laptop with BitLocker + PIN https://www.errno.fr/Bitlocker_TPM_and_PIN_privesc