Toots for buherator@infosec.place account

Written by buherator on 2025-01-31 at 13:04

[RSS] Cisco Webex Connect - Unauthenticated access to all chats

https://www.ophionsecurity.com/post/cisco-webex-connect-vulnerability-unauthenticated-access-to-all-chats

=> More informations about this toot | View the thread

Written by buherator on 2025-01-31 at 08:19

[RSS] Windows Exploitation Tricks: Trapping Virtual Memory Access (2025 Update)

https://googleprojectzero.blogspot.com/2025/01/windows-exploitation-tricks-trapping.html

=> More informations about this toot | View the thread

Written by buherator on 2025-01-30 at 19:30

Understanding the Microsoft Pluton security processor - Windows IT Pro Blog

https://techcommunity.microsoft.com/blog/windows-itpro-blog/understanding-the-microsoft-pluton-security-processor/4370413

=> More informations about this toot | View the thread

Written by buherator on 2025-01-30 at 12:00

[RSS] CVE-2024-46506: Unauthenticated RCE in NetAlertx

https://rhinosecuritylabs.com/research/cve-2024-46506-rce-in-netalertx/

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 14:17

Also featured in https://www.youtube.com/watch?v=lKOYbzrTKvM :)

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 13:39

My first wish to the Genie on this day would be to get a live stream to OAI's PR offices.

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 13:24

Cryptonite is back at Hackerspace #Budapest \o/ Next event on 4. Feb 19:00 CET about lattice cryptanalysis:

https://hsbp.org/tiki-calendar_edit_item.php?viewcalitemId=1939

[#]cryptography

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 12:32

[RSS] Decompiling 2024: A Year of Resurgance in Decompilation Research

https://mahaloz.re/dec-progress-2024

/by @mahaloz

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 11:39

Just in time for my Death Metal Mental Care Day, new Aborted is out:

https://abortedmetal.bandcamp.com/track/the-pain-will-be-exquisite

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 10:19

"The Vale of Pnath (or Pnoth) is a vast pit in H.P. Lovecraft's underworld. The vale is filled with a mountain-sized heap of bones and Night-gaunts often carry helpless victims to the vale, where they are left to die."

https://valeofpnath.bandcamp.com/album/between-the-worlds-of-life-and-death

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 07:59

I accidentally clicked a fucking YT short and it WON'T STOP PLAYING IF I START ANOTHER VIDEO!!

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 07:18

[RSS] My electric toothbrush was acting up, so I tried to reboot it

https://devblogs.microsoft.com/oldnewthing/20250128-00/?p=110815

Life is an adventure!

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 07:14

Evolving the Windows User Model – Introducing Administrator Protection

https://techcommunity.microsoft.com/blog/microsoft-security-blog/evolving-the-windows-user-model-%E2%80%93-introducing-administrator-protection/4370453

=> More informations about this toot | View the thread

Written by buherator on 2025-01-29 at 07:10

GhidraDbg - A Python script that creates a bridge between #Ghidra and #WinDbg for dynamic driver analysis, allowing real-time synchronization of debugging states.

https://github.com/philsajdak/GhidraDbg

"The built-in Ghidra-WinDbg sync can be challenging to configure and maintain, often requiring specific connection settings and troubleshooting. This script aims to provide a more straightforward, feature-rich alternative."

=> More informations about this toot | View the thread

Written by buherator on 2025-01-27 at 18:31

What if the human brain can be deceived much cheaper?

=> More informations about this toot | View the thread

Written by buherator on 2025-01-27 at 13:41

[RSS] Clone2Leak: Your Git Credentials Belong To Us

https://flatt.tech/research/posts/clone2leak-your-git-credentials-belong-to-us/

=> More informations about this toot | View the thread

Written by buherator on 2025-01-27 at 07:50

In case anyone wanted to play chess on their AS/400:

https://github.com/PoC-dev/gnuchess-as400

=> More informations about this toot | View the thread

Written by buherator on 2025-01-27 at 07:46

So glad this duo is still active!

Fernanda Martins + Lukas 4decks @ Crow, Madrid, Spain Jan/2025 (VideoSet)

https://www.youtube.com/watch?v=hG79vpFuaXk

=> More informations about this toot | View the thread

Written by buherator on 2025-01-27 at 07:13

ghidriff - mpengine.dll - VersionTrackingDiff - 1.1.24030.4 vs 1.1.24060.5

https://gist.github.com/v-p-b/f9aa39263e125c8e3b04c4d22fd4d78d#strings

This one executed much faster than SimpleDiff (with the O(n^2) FuncName:Param algorithm)!

Unfortunately the diff is so big it's difficult to judge quality, so the next step is to come up with some metrics that can be checked automatically.

[#]bindiff #ghidriff

=> More informations about this toot | View the thread

Written by buherator on 2025-01-26 at 15:31

This one ran for more than 36 hours on my laptop with ghidriff's SimpleDiff (mostly single threaded so I don't think a bigger machine would've made much difference). I just filed a PR for an optimization that seems to make one phase run in seconds instead of hours, that sounds a bit too good to be true, so reviews are welcome:

https://github.com/clearbluejar/ghidriff/pull/107

/cc @clearbluejar

=> More informations about this toot | View the thread

=> This profile with reblog | Go to buherator@infosec.place account