Posts
2579
Following
624
Followers
1379
"I'm interested in all kinds of astronomy."
buherator

buherator

[RSS] RISC CPU Lives in Excel

https://hackaday.com/2024/11/24/risc-cpu-lives-in-excel/
0
0
2
buherator

buherator

Edited 4 months ago
From Guardian to Gateway: The Hidden Risks of EDR Vulnerabilities - Neodyme
https://neodyme.io/en/blog/wazuh_rce/

/via @tekwizz123

CVE-2024-32038, CVE-2023-50260
#frombsky
0
1
5
buherator

buherator

Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages | USENIX
https://www.usenix.org/conference/usenixsecurity24/presentation/han-seunghun

/via @andersonc0d3
0
4
6
buherator
repeated
vector35@bird.makeup

Vector 35

Prefer Rust to C? There's no reason your decompilation has to necessarily target C as the output. With our Language Representation UI/API in 4.2 you can see all your decompilation as Rust instead.

0
3
0
buherator

buherator

#music #speedmetal #trashmetal
Show content
#maldev

https://hellripper.bandcamp.com/album/black-arts-alchemy-ep
0
0
0
buherator

buherator

A bit annoying thing in #Bsky #ATProto is that you don't post plaintext that is "enriched" remotely, but provide a Rich Text object with links, tags, etc. marked as such. It seems from the servers perspective len(rich_text)!=len(str(rich_text)) and I found no way to find out what the true length of my rich Text object will be resulting in failed posts and bad thread splitting...

https://atp.readthedocs.io/en/latest/atproto_client/utils/text_builder.html
0
0
3
buherator

buherator

Latest #Ghidra failed to build because some obscure pyOpenSSL error, which can break pip altogether:

> TypeError: deprecated() got an unexpected keyword argument 'name'

Here's what worked for me:
- Delete the failing pyOpenSSL directory from site-packages
- pip install "pyOpenSSL>22.0.0,<23.0"
1
0
1
buherator

buherator

I really like the idea of Bandcamp Gift Cards! Get your friends and family hooked on supporting independent artists/small labels!

https://bandcamp.com/gift_cards
0
0
1
buherator

buherator

Edited 4 months ago
My son's #biology book represents carnivores as a true subset of animalivores (which is a new word to me).

Which animals are animalivores but not carnivores?
2
0
1
buherator

buherator

This is another #test
0
0
0
buherator
repeated
dwizzzlemsft@bird.makeup

David Weston (DWIZZZLE)

My keynote from @sansoffensive in Hollywood. Attacking Intelligence: Attacking and Defending AI on The Edge

I cover confidential GPUs, Windows Recall architecture, and post-compromise tradecraft with AI and lots more!

https://www.youtube.com/watch?v=1zl1NSwuhAk

0
1
0
buherator
repeated
dwizzzlemsft@bird.makeup

David Weston (DWIZZZLE)

Ignite session covering all the Windows Security newness just posted

https://ignite.microsoft.com/en-US/sessions/GS06

0
1
0
buherator

buherator

In the "Worth Reposting from Twitter" series today:

https://scrapco.de/twitter/buherator/status/1576535053571530752/

This is a thread about technological things I misjudged during my career. Maybe it'll help someone. (Or maybe I misjudge again?)

- I started gera's challenges, but "why bother with client-side?"

https://github.com/gerasdf/InsecureProgramming.git

- During university, seeing Meterpreter's shortcomings I considered to start developing a professional implant. But "no security boundaries, no fun".

Now look at all teh frameworks...

- Gave up on chemistry because of an idiot teacher
2
2
4
buherator

buherator

Hunting the Mongoose: Discovering 10 Vulnerabilities in the Mongoose Web Server Library
https://www.nozominetworks.com/blog/hunting-the-mongoose-discovering-10-vulnerabilities-in-the-mongoose-web-server-library
0
2
1
buherator

buherator

"You never pay here... not with money"

OMG I just realized at the end of the episode Needful Things was bought by *Google*

https://rickandmorty.fandom.com/wiki/Needful_Things
1
0
3
buherator
repeated
stacksmashing@infosec.exchange

stacksmashing

I am looking for padlock or similarly visual device that has bluetooth vulnerabilities (i.e. just uses an "unlock" command or so and no decent cryptography). Any tips welcome!

1
2
0
buherator
repeated
lcamtuf@infosec.exchange

lcamtuf verified verified verified

We misunderstood the concept of afterlife. What the religious texts meant to say is that the essence of your online life will be preserved as the weights of an LLM that handles airline customer support and prescribes Viagra in a telehealth app.

4
8
0
buherator
repeated
thedarktangent@defcon.social

Jeff Moss

TIL: https://ladybird.org a truely independent browser built by engineers not motivated by data driven revenue. DNSSEC, DANE, no shady CA list, etc. Theyvare always looking for help.

3
2
0
buherator
repeated
rh0main@infosec.exchange

Romain THOMAS

I'm happy to share that LIEF (extended)
is now providing an API to disassemble code (backed by the LLVM MC layer).

This disassembler is integrated with other functionalities
like dyld shared cache support or DWARF debug info.

You can checkout https://lief.re/doc/latest/extended/disassembler/index.html for the details.

0
4
0
buherator
repeated
transmission64@c.im

Transmission64 :c64:

And Transmission64 is live. Head on over to https://t64.to/watch .

0
2
0
Show older
About infosec.place

Terms of Service

This is a placeholder, overwrite this by putting a file at 

$STATIC_DIR/static/terms-of-service.html

See the Static Directory docs for more info.