Wrapping up our COM hijacking series! 🎉

In the final part, we discuss a custom IPC protocol, use a registry write to gain SYSTEM privileges, and explore Denial of Service attacks on security products. 💥💻

Don't miss it! https://neodyme.io/en/blog/com_hijacking_4/

here is my problem today: how to get more readers onto Pivot To AI? https://pivot-to-ai.com

you know what the site is and what it does

typically ~1000 unique viewers a day, pretty stable

regular readers become patrons, but first I have to lure them in repeatedly - that's my pipeline

ideas welcome, including bad and hackneyed ones

Hackaday Europe 2025: Workshops and More Speakers

https://hackaday.com/2025/02/26/hackaday-europe-2025-workshops-and-more-speakers/

I'm not slacking off...

https://learn.microsoft.com/en-us/windows-hardware/drivers/debuggercmds/-pfn

Unfortunately the hv-vendor-id trick didn't work to make KDNET work over Proxmox, at least not by just setting the enlightenment in the cpu entry of the node's Proxmox config :(

https://infosec.place/notice/ArU6AdcfLlqQd1uAzY

rotfl https://hackerone.com/reports/2293343

8 CVEs in X⁠.Org X server and Xwayland https://www.openwall.com/lists/oss-security/2025/02/25/1
CVE-2025-26594: Use-after-free of the root cursor
CVE-2025-26595: Buffer overflow in XkbVModMaskText()
CVE-2025-26596: Heap overflow in XkbWriteKeySyms()
CVE-2025-26597: Buffer overflow in XkbChangeTypesOfKey()

I think I should display this somewhere in a frame

https://youtu.be/My_13FXODdU?si=5l_PiCdfXbY3ohSx&t=540

The Best Security Is When We All Agree To Keep Everything Secret (Except The Secrets) - NAKIVO Backup & Replication (CVE-2024-48248) - watchTowr Labs https://labs.watchtowr.com/the-best-security-is-when-we-all-agree-to-keep-everything-secret-except-the-secrets-nakivo-backup-replication-cve-2024-48248/

There are numerous times where I think "if that person simply had better aim, the world would be so very different".

But then I remember that where we are right now globally is not down to one or two evil people - but the result of rot in many social, economic, and governmental systems. The people we think are making evil choices are avatars for the system, more than individuals.

We have to fix the systems.

EDIT: They're still evil assholes. I just mean they're replacable, not unique.

Computer History IBM 1130 System Engineering 1965

https://www.youtube.com/watch?v=SNqii4Hnu9A

[RSS] Pwn everything Bounce everywhere all at once (part 2)

http://blog.quarkslab.com/pwn-everything-bounce-everywhere-all-at-once-part-2.html

New pre-auth RCE exploit chains for old SOPlanning bugs #NoCVE

[RSS] Pwn everything Bounce everywhere all at once (part 1)

http://blog.quarkslab.com/pwn-everything-bounce-everywhere-all-at-once-part-1.html

Blast from the past: new, configuration independent exploitation method of CVE-2009-1151 (pre-auth RCE in phpMyAdmin)

https://gfw.report/publications/ndss25/en/ lmao

Mildly amusing: this Aussie dude got fed up with people parking in his driveway so he installed a motion-activated sprinkler.

The swift strict memory safety proposal has been accepted: https://forums.swift.org/t/accepted-se-0458-opt-in-strict-memory-safety-checking/78116

We found out that machines performed 7% better if we trapped them in an endless loop of profound existential anguish

This is a pretty good summary of #pentest as a profession:

https://www.reddit.com/r/Pentesting/comments/1ixoq2g/pentesting_is_the_hardest_cybersecurity/

(I don't think comparisons to other fields makes much sense though)

[RSS] Reverse Engineering PowerPoint's XML to Build a Slide Generator

https://merlinai.framer.website/blog/ppt-generator

[RSS] Mixing up Public and Private Keys in OpenID Connect deployments

https://blog.hboeck.de/archives/909-Mixing-up-Public-and-Private-Keys-in-OpenID-Connect-deployments.html