@stephanschamp @Rewrite2011 @_mccaulay Any blog that has technical info on the bug/exploit?

@lauriewired rust sucks

@OVX_OFF اعتقد قصدك الله يشل الهكرز عشان معد يقدرون يكتبون مالويرز كريهه

@7etsuo It didn’t just break audio, also task bar and screen lock tools. Now I don’t have a bar nor my screen closing after 30 seconds.

@al0dan @p1k4l4 I honestly lost your account but thanks!.

@0xclient You forgot the “we” 😔 Ngl reversing the kernel yesterday was something…

RT @0xclient: damn it's the first time to see those instructions lol cli - sgdt - sidt - str - stmxcsr - xgetbv - rdmsr, windows kernel has…

RT @wetw0rk_bot: Remotely load your rootkits using Sickle! In the video below I'm exploiting a Linux RCE vulnerability and using the memfd_…

@wetw0rk_bot Nice work!! I did go through memfd syscall to do a reflective injection. It’s honestly very interesting syscall to look at.

@NullByte0x Congrats ammar!

@passthehashbrwn There’s dozen scenarios in the business industry where this thing might be a problem for them.

@RussianPanda9xx Yeah and I forgot the N because I need glasses nowadays. 24/7 staring at the screen.

@NicoEconomou @yarden_shafir hm. so when the kernel gets the clac instruction, the SMAP automatically disables until it finishes execution, then turns back on?

RT @yarden_shafir: @BigDonTea Sure! The named pipe technique here is a classic one: Also this (now mitigated) fake…

@yarden_shafir Noice!. io ring (::: reminds me of io_uring 😅 thanks for the resources tho.

@yarden_shafir Could you share any resources/github repo with this technique? Never seen one.

@yarden_shafir Interesting. And also I’ve never heard of UM data structures. I’m just the Linux dude in the corner.

@yarden_shafir I thought windows had that already. Good thing tho. No more userland payloads.