periodic reminder for infosec folks: stop deciding things are done badly or "insecure" outside of the context of a threat model

it's disingenuous and irresponsibly ignores that security and cryptography are fundamentally about balancing risk tolerance and risk abatement

pwndbg 2025.01.20 Release

https://github.com/pwndbg/pwndbg/releases/tag/2025.01.20

"This release features LLDB support, improved performance, bug fixes and better embedded systems experience. Pwndbg can now run on macOS (both Intel & Apple Silicon) and allows for debugging Mach-O binaries."

Session Round 2

Earlier this week, I wrote a blog post succinctly titled, Don't Use Session. Two interesting things have happened since I published that blog: A few people expressed uncertainty about what I wrote about using Pollard's rho to attack Session's design (for which, I offered to write a proof of concept and report back with results), and Session wrote a blog claiming to rebut the claims made in that blog post.

http://soatok.blog/2025/01/20/session-round-2/

If you’ve recently installed Homebrew you may have installed a Trojan Horse if you used Google to find it
https://alecmuffett.com/article/110957
#HomographAttack #hacking #homebrew

Seems that new windows update bring some changes in NTFS as its no longer possible to delete folders with ::$INDEX_ALLOCATION allocation trick with DeleteFile api.

"Technology giants must do more to co-operate with law enforcement on encryption or they risk threatening European democracy, according to the head of Europol". She considered end-to-end encryption incompatible with democracy? https://www.ft.com/content/1e6a600d-8620-4ed6-a4cd-5c454d6247ba

New assessment for topic: CVE-2024-49112

Topic description: "Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability ..."

"CVE-2024-49112 is a critical vulnerability in the Windows Lightweight Directory Access Protocol (LDAP) service ..."

Link: https://attackerkb.com/assessments/07d80193-ab91-4495-ad6c-eeeb6ffbb112

[RSS] Microwatt goes multiprocessor

https://www.talospace.com/2025/01/microwatt-goes-multiprocessor.html

"Microwatt, the OpenPOWER VHDL softcore. Microwatt now runs on multiple FPGA boards or can be run (slowly) in simulation, and is capable of booting Linux"

Note to progressive politicians: If you don’t offer real solutions to problems, voters will follow people who offer fake solutions.

Austrian-born American actress and inventor Hedy Lamarr died #OTD in 2000.

At the beginning of World War II, along with George Antheil, Lamarr co-invented a radio guidance system for Allied torpedoes that used spread spectrum & frequency hopping technology to defeat the threat of radio jamming by the Axis powers. However, the technology was not used in operational systems until after World War II, & then independently of their patent.

https://en.wikipedia.org/wiki/Hedy_Lamarr

#science #technology #womeninStem

This is an interesting question re: the Windows file delete privesc vector published by ZDI:

Does FolderContentsDeleteToFolderDelete.exe Still Work on Windows 11 24H2? #8 - https://github.com/thezdi/PoC/issues/8

https://www.thezdi.com/blog/2022/3/16/abusing-arbitrary-file-deletes-to-escalate-privilege-and-other-great-tricks

[RSS] Linux Kernel TLS Part 1

https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html

Finally! https://sethmlarson.dev/how-to-disable-copilot-in-github

Thank you @harrysintonen for making me aware #github #copilot

In ~1h, we’ll explore the awesome and clever DOOM.PDF!
https://www.youtube.com/live/t17joAiWBkE?si=clV3nvyFZ5DjKQ5e

[RSS] The case of the crash when trying to erase an element from a std::set

https://devblogs.microsoft.com/oldnewthing/20250117-00/?p=110777

Rust made me see cases like this in a much different light!

Project: microsoft/TypeScript https://github.com/microsoft/TypeScript
File: src/compiler/utilities.ts:3549 https://github.com/microsoft/TypeScript/blob/cbac1ddfc73ca3b9d8741c1b51b74663a0f24695/src/compiler/utilities.ts#L3549

function isExpressionNode(node: Node): boolean

SVG:
dark https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fmicrosoft%2FTypeScript%2Fblob%2Fcbac1ddfc73ca3b9d8741c1b51b74663a0f24695%2Fsrc%2Fcompiler%2Futilities.ts%23L3549&colors=dark
light https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fmicrosoft%2FTypeScript%2Fblob%2Fcbac1ddfc73ca3b9d8741c1b51b74663a0f24695%2Fsrc%2Fcompiler%2Futilities.ts%23L3549&colors=light

For those of you who are also deep into Windows #reverseengineering, #bootloaders, and #WinDbg: My first blog post on researching the Windows driver load order and all its quirks is out, beginning with some WinDbg fundamentals: https://colinfinck.de/posts/nt-load-order-part-1/

The TikTok ban, the Musk Twitter takeover, the Facebook moderation policy changes, the Republicans’ rapidly intensifying crackdowns on speech... let these be the proof you needed to move anything you care about online to a space you control.

Digital sovereignty is more important than ever.

#DigitalSovereignty

ROFLMAO.

Claude decided to crawl one of the sites on my new server, where known bots are redirected to an iocaine maze. Claude has been in the maze for 13k requests so far, over the course of 30 minutes.

I will need to fine tune the rate limiting, because it didn't hit any rate limits - it scanned using 902 different client IPs. So simply rate limiting by IP doesn't fly. I'll rate limit by (possibly normalized) agent (they all used the same UA).

Over the course of this 30 minutes, it downloaded about ~300 times less data than if I would've let it scrape the real thing, and each request took about the tenth of the time to serve than the real thing would have. So I saved bandwidth, saved processing time, likely saved RAM too, and served garbage to Claude.

Job well done.