The recording of our @WEareTROOPERS presentation is now online, enjoy!

#TROOPERS24 - IBM i for Wintel Hackers

https://www.youtube.com/watch?v=t4fUvfzgUbY

#IBMi

Recordings from this year's @WEareTROOPERS :

Track 1: https://www.youtube.com/watch?v=z-ug2dwcSz8&list=PL1eoQr97VfJmkXx9LNNY9RzQOKb6DOytP

Track 2: https://www.youtube.com/watch?v=2s6l0IkK52E&list=PL1eoQr97VfJkHzRHFEFyEzwyx-8m9Fbzp

Track 3: https://www.youtube.com/watch?v=Gmtwtw1uKss&list=PL1eoQr97VfJlIiZL-rP6jq3MFJAgzFYTZ

#TROOPERS24 #TROOPERS2024

Analysis of CVE-2024-37084: Spring Cloud Remote Code Execution https://blog.securelayer7.net/spring-cloud-skipper-vulnerability/

Off-By-One 2024 recordings:

- Day 1: https://www.youtube.com/watch?v=tAmjkfO3-Ow&list=PLiIDIO1Gp6V_I4mSvz8WDfLVt6xy85RvP

- Day 2: https://www.youtube.com/watch?v=508ng3J1FgI&list=PLiIDIO1Gp6V90DvDxshqdD1YgAjZRFDEj

Off-by-One 2024 Day 1 - Keynote : Breaking Into Vulnerability Research: Dr Silvio Cesare

https://www.youtube.com/watch?v=tAmjkfO3-Ow

#CanSecWest24 There Will Be Bugs Exploiting Basebands in Radio L2

https://static1.squarespace.com/static/5f3c7479f4b3c702571a047d/t/66692aa7da38a0750670bc5c/1718168234675/CSW24-There-Will-Be-Bugs-SlideDeck.pdf

:O

"The TMS9900 is bonkers. Big endian, has no stack pointer, and there's an instruction to execute the contents of a register as if it were an instruction in memory." - @travisgoodspeed

"Mike Brent (tursilion) made an awesome TMS9900 code generator for CVBasic, so now it can target TI-99/4A computers. The picture shows Viboritas running in the Classic99 emulator." - @nanochess

https://github.com/nanochess/cvbasic

CVE-2023-41111: Samsung Baseband RLC Data Re-Assembly Buffer Overflow

https://labs.taszk.io/blog/post/93_rlc_bof/

Traceeshark: Deep Linux runtime visibility meets Wireshark https://github.com/aquasecurity/traceeshark

'The Dutch Data Protection Authority imposes a fine of 30.5 million euro and orders subject to a penalty for non-compliance up to more than 5 million euro on Clearview AI... Clearview has built an illegal database with billions of photos of faces, including of Dutch people. The Dutch DPA warns that using the services of Clearview is also prohibited.' https://www.autoriteitpersoonsgegevens.nl/en/current/dutch-dpa-imposes-a-fine-on-clearview-because-of-illegal-data-collection-for-facial-recognition #Netherlands #clearview #law #tech #ai #privacy #dataprotection #surveillance

Come for the #OffensiveRust content, stay for the #ThrashMetal revival 🎸 https://infosec.exchange/@hnsec/113072354880406361

[RSS] The Co­Initialize­Security function demands an absolute security descriptor

https://devblogs.microsoft.com/oldnewthing/20240902-00/?p=110201

[RSS] [Breaking Videogames] save-splicing

https://banyaszvonat.github.io/breaking-videogames/2024/09/03/save-splicing.html

Zero Trust Environments

My v8 jit optimization exploit for 34c3 ctf:
https://gist.github.com/itsZN/9ae6417129c6658130a898cdaba8d76c

BlazeFox firefox pwnable reference solution for BlazeCTF:
https://gist.github.com/itsZN/4dd40ff12d886e5b3984200a92c1a38a

Here is my exploit for @plaidctf V8 exploit challenge. Bug was an n-day patched in chrome 66.0.3359.117
https://gist.github.com/itsZN/73cc299b9bcff1ed585e6206d1ade58e

Ah yes, I remember buying that textbook

The state of sandbox evasion techniques in 2024 https://fudgedotdotdot.github.io/posts/sandbox-evasion-in-2024/sandboxes.html

Google Chrome security advisory: Stable Channel update for Desktop
4 security fixes, 2 externally reported by Cassidy Kim(@cassidy6564): CVE-2024-8362 (high) Use after free in WebAudio and CVE-2024-7970 (high) Out of bounds write in V8. No mention of exploitation.

#Google #Chrome #vulnerability #CVE