Similar User
@batcain_
@furk4n0zturk
@Yusufcancakiir
@meto0x3d
@brkalbyrk7
@aporlorxl23
@echel0n_1881
@_theatha
@rhotav
@sh4d0wlesss
@1umos_
@mutluexe
@fatkz123
@ambiguousmind_
@h0rcun
Hellooo Hackers! In this tweet we overwrite some memory. ( Thanks for all! @Zardus & @TheConnorNelson )
Jaewon Min(@binerdd ) & Kaan Ezder(@kaanezder) Fake it till you make it: Bypassing V8 Sandbox by constructing a fake Isolate powerofcommunity.net/poc2024/Jaewon…
#POC2024 Jaewon Min & Kaan Ezder(@binerdd, @kaanezder) Fake it till you make it: Bypassing V8 Sandbox by constructing a fake Isolate 🏎
(CVE-2024-5493)[339877165][AV1]heap-BoF write is now public with repro issues.chromium.org/issues/3398771… ./chrome --disable-gpu --use-fake-ui-for-media-stream --use-fake-device-for-media-stream --incognito --user-data-dir=/tmp/xxs http://localhost:8880/crash.html @cassidy6564
(CVE-2024-5493)[339877165][AV1]Initialize encoder with specific settings -> start encoding video -> change resolution/SVC layers dynamically -> desynchronized buffer allocation -> Heap BoF during encoding aomedia.googlesource.com/aom.git/+/d3cc… Repro: aomedia.googlesource.com/aom.git/+/ad69… @cassidy6564
Safe C++ // by Sean Baxter and Christian Mazakas open-std.org/jtc1/sc22/wg21… #cpp #memorysafety
[POC2024] SPEAKER UPDATE 1⃣5⃣ 👥 @binerdd & @kaanezder - "Fake it till you make it: Bypassing V8 Sandbox by constructing a fake Isolate" #POC2024
At the KazHackStan event held in Kazakhstan between September 10-14, with the support of @BlackboxSecTR , we took 3rd place in the CTF event we participated under the name PeakEye. I would like to thank the KazHackStan team and my teammates (@bugraeskici , @numanturle ,…
Since the issue of CVE-2024-5274 is public now, we can finally release our research from months ago. This is a rare vulnerability in the V8 Parser module, and we were surprised to find that our exploit method coincidentally aligns with the ITW exploit😅 blog.darknavy.com/blog/cve_2024_…
Google Chrome In-The-Wild Type Confusion in V8 (CVE-2024-7971 [360700873]) happens when handling loop inputs inside WASM baseline (A.K.A Liftoff) compiler/assembler: chromium-review.googlesource.com/c/v8/v8/+/5797…
[343407073][$5000] V8 Sandbox Bypass: control-flow hijacking via WASM Table Indirect call issues.chromium.org/issues/3434070… V8 sbx ecape technique(writeup): issues.chromium.org/action/issues/… ./d8 --sandbox-testing sbx_bypass.js issues.chromium.org/action/issues/… @le_douds @ga1ois
In this post I'll use CVE-2024-5830, a bug in object transitions in Chrome to gain RCE in the Chrome renderer sandbox: github.blog/security/vulne…
[334120897][$6000]Wasm function signature confusion -> out of sandbox arbitrary r/w(v8sbx escape, crashing instruction is `mov [rcx+rax], rdx` so the target page won't appear in the registers (rcx+rax == target_page)) issues.chromium.org/issues/3341208… Kyle Zeng
🤔 [334120897][wasm][sandbox]In-sandbox corruption could cause i64 values to be passed to functions expecting an i32 -> SBX: chromium-review.googlesource.com/c/v8/v8/+/5494… Regress test: ./d8 --wasm-staging --sandbox-testing regress-334120897.js github.com/v8/v8/blob/594…
#BHUSA The topic, "Super Hat Trick: Exploit Chrome and Firefox Four Times", between me and Zhenghang has come to an end. Thank all the audiences on the spot for participating in our topic sharing. The white paper and PPT are now available to the public. blackhat.com/us-24/briefing…
United States Trends
- 1. Kendrick 711 B posts
- 2. #AskShadow 25,7 B posts
- 3. MSNBC 235 B posts
- 4. $LEAFS N/A
- 5. Scott Bessent 6.459 posts
- 6. Drake 92,6 B posts
- 7. Luther 52,3 B posts
- 8. The Warm Up 14,8 B posts
- 9. Brandon Allen 2.348 posts
- 10. Wayne 62,8 B posts
- 11. LinkedIn 44 B posts
- 12. Kdot 10,9 B posts
- 13. TV Off 44,5 B posts
- 14. Daniel Jones 49 B posts
- 15. Dobbs 2.052 posts
- 16. NASA 74,2 B posts
- 17. Purdy 7.712 posts
- 18. Friday Night Lights 1.064 posts
- 19. Snoop 22,2 B posts
- 20. Maddow 37,4 B posts
Who to follow
-
batcain
@batcain_ -
Furkan Öztürk
@furk4n0zturk -
Yusuf Can Çakır
@Yusufcancakiir -
meto
@meto0x3d -
Berk Albayrak
@brkalbyrk7 -
Eren
@aporlorxl23 -
𝚎𝚌𝚑𝚎𝚕𝚘𝚗
@echel0n_1881 -
ty
@_theatha -
Utku Çorbacı
@rhotav -
sh4d0wless
@sh4d0wlesss -
Nur
@1umos_ -
Mutlu Dönmez
@mutluexe -
Devo
@fatkz123 -
not alice 3301
@ambiguousmind_ -
Hüseyin Orçun KARATAŞ
@h0rcun
Something went wrong.
Something went wrong.