Posts
4218
Following
733
Followers
1628
"I'm interested in all kinds of astronomy."
repeated

I heard a very encouraging insight from @j00ru many years ago: either everyone has looked at it because there are always bugs, so there will be more, or no one has looked at it, so there will be bugs. In both cases, there are bugs. I welcome the machines to the playing field.

0
3
0
repeated

Cortex is a long-term, multi-tenant scalable open source storage for Prometheus and OpenTelemetry.
Earlier this year we conducted a security audit sponsored by @ostifofficial

Check our report here:
https://blog.quarkslab.com/cortex-security-audit.html

0
2
0
[RSS] Announcing the Save CTFs Fund

https://osec.io/blog/save-ctfs-fund/
0
0
1
repeated

David Chisnall (*Now with 50% more sarcasm!*)

So, if I understand correctly, a bunch of elected politicians said ‘okay, we identified that the things Facebook and friends are doing is actively harmful to their users. So what we’re going to do to mitigate this is ensure that, legally speaking, the only people who can experience these negative effects are people of voting age.’

3
12
0
According to C++ `char`s are not real integers.

https://stackoverflow.com/questions/31460733/why-arent-stduniform-int-distributionuint8-t-and-stduniform-int-distri

I advocate equal rights for `char`s!
1
0
3
windbg.info is down :(
0
0
1
#music #techno #festival
Show content
I'm listening to this set with the smell of the light Summer rain coming in and I really feel like going to the main stage bar for a morning beer and maybe some dancing to move my body a bit...

https://soundcloud.com/bassiani/bassiani-invites-luigi-tozzi-live-podcast-280

...then I realize I'm sitting in the office waiting for some VMs to boot :P
0
0
2
repeated

I was hoping to catch a small concert in next week or in the week after. But it seems like all the venues I checked are on a summer break. Any recommendations?

1
1
0
@0xabad1dea I've heard that putting grids over illegal content was a common practice to avoid automated filtering. With this incident in mind bad actors can move on to deliberate dataset poisoning (assuming the raising FP rate was accidental this time) :(
0
0
6
repeated

wow, discord acknowledged on the Bad Place that it was true that an overfitted CSAM detection AI started flagging grids (spreadsheets, game inventory screenshots, etc) as illegal and instabanning people.

8200 people got banned this way over several weeks before someone managed to get their attention on reddit. But the good news is they have in fact manually rolled back all the bans.

On the one hand, this is the one problem where you absolutely want as little hands-on human moderation as possible. On the other, this is a very clear-cut overfitting failure mode on a small dataset (of the images that governments provide to major websites for automated detection) with disastrous consequences for random innocent people. And they presumably had to go back and manually check all bans in this category for the last few weeks, thus maximizing the moderators' exposure too. 🤦‍♀️

3
2
0
Januscape: Guest-to-Host Escape in KVM/x86

https://github.com/V4bel/Januscape

CVE-2026-53359
0
0
1
[RSS] Hack the Elephant One Bite at a Time: NUL byte SQL Injection in pdo_firebird and NULL Pointer Dereference in PDO via pdo_pgsql

https://swarm.ptsecurity.com/hack-the-elephant-one-bite-at-a-time-nul-byte-sql-injection-in-pdo_firebird-and-null-pointer-dereference-in-pdo-pgsql/
0
0
1
repeated
Edited 3 days ago

Just one more show option bro. One more show option will fix it.

3
1
0
repeated

for whoever needs to hear this: you're not alone. i'm not vibecoding any of the software i write. i'm writing it by hand, but i've leveled up my emacs with eglot/lsp. i'm modernizing my stacks and use languages with excellent compilers. i think about how to do more with less. i'm trying to combine the best human-written libraries and modules and assemble them with minimal boilerplate. i enjoy reading your manuals and references. i believe in robust, secure, human-written software.

10
29
1
Does anyone happen to know the algorithm for history retrieval in #Windows cmd.exe?

After *nix it feels like it was designed by a madman, although I'm sure there's some logic to it that I fail to appreciate.
0
1
4
repeated

aaaaaand we just finished a dumb request smuggling PoC for (Open)LiteSpeed httpd live on stream: https://warez.sl0p.foo/ols-h2-smuggle/

their commit hygiene is designed to hide security fixes, didn't manage to find a CVE/report anywhere.

all results will be published on http://warez.sl0p.foo -- beware, minimal curation! ;^)
https://bird.makeup/users/bl4sty/statuses/2074056010168209849

0
1
0
repeated

I’m excited to finally open-source a project I’ve been heavily refining: the .

This is a 100% strict, #![no_std] generic implementation of the Ouroboros engine. I designed it to maintain absolute parity with the security guarantees and constant-time execution of my original assembly implementation, now brought to the Rust ecosystem.

When teaching Systems Reverse Engineering, the vulnerabilities in standard libraries become glaringly obvious at the silicon level. I needed an engine that didn't just look good mathematically, but could actually survive physical and side-channel attacks on bare-metal hardware.

Whether you're targeting an ATmega328P, an RP2350, or testing natively on your host machine, this crate is built for hostile environments.

Here is what is happening under the hood:

1. Speck-128/256 & Davies-Meyer KDF: We are running 24,576 iterations of Speck-256 wrapped in a Davies-Meyer construction. This creates a ~10-second cryptographic "tar pit" that makes brute-forcing a high-entropy key over UART impossible, while crippling the theoretical quadratic speed-up of Grover's algorithm.

2. Constant-Time MAC Verification: The engine uses a branchless 2's-complement mask (derived from the AVR NEG, SBC, COM trick) to verify the payload. No data-dependent branches mean no timing oracles.

3. Hardware-Hacking Resistant: Because the key is stretched and mixed into the CTR stream, even if an attacker uses EMFI/voltage glitching to bypass the MAC validation branch, the payload decrypts to randomized garbage. Cold-boot RAM extraction is useless because the memory wipe executes in constant time.

The repository includes a host-based mock hardware demo that runs the exact same engine directly in your terminal, plus a full RP2350 hardware implementation via USB CDC ACM.

If you're building secure bootloaders, dealing with bare-metal authentication, or running hardware hacking labs, pull the crate and test it out.

Source and full cryptographic design breakdown here: https://github.com/mytechnotalent/encryption

Also available natively on Crates.io: https://crates.io/crates/encryption

0
3
0
Show older