clem1
@_clem1
Followers
6,641
Following
519
Media
3
Statuses
861
Explore trending content on Musk Viewer
Sinwar
• 801342 Tweets
Rosé
• 624997 Tweets
#يحيي_السنوار
• 283976 Tweets
Bluesky
• 246590 Tweets
Calderón
• 215190 Tweets
スーパームーン
• 191228 Tweets
Tyler
• 98922 Tweets
غير مدبر
• 69150 Tweets
#TUDUMNaLata
• 65962 Tweets
Monsalve
• 64767 Tweets
#OurPreciousFOURTHTurns20
• 59483 Tweets
HAPPY FOURTH DAY
• 57601 Tweets
Rafah
• 55262 Tweets
#Hamas
• 40733 Tweets
ابو ابراهيم
• 34134 Tweets
対象作品
• 23243 Tweets
Perón
• 22858 Tweets
Macaya
• 18455 Tweets
Karen Nyamu
• 17409 Tweets
Red Bull
• 14027 Tweets
Vural Çelik
• 11737 Tweets
ESTRENO URANUS2324 MEXICO
• 10706 Tweets
Hakan Fidan
• 10496 Tweets
احمد ياسين
• 10397 Tweets
I just published a new RCA for CVE-2023-26369, the PDF 0-day that was used in the following campaign.
North Korean actors 🇰🇵 are targeting security researchers again including use of at least one 0-day. IOCs in the blog ⬇️ If you've been in contact, please reach out
15
326
682
3
113
268
Yay! 🙏☺️
#teamwork
Epic
@PwnieAwards
achievement indeed by TAG's own
@_clem1
finding and killing 0day in the wild!
Two years straight of awards for the team.
2
11
97
15
6
112
Details of vulnerabilities sent by bilou to chromium VRP. … Interesting stuff! :)
0
21
35
libvirt-sandbox, another way to sandbox apps easily on linux, nice
http://t.co/XVqHvIIp
http://t.co/VfIszzRJ
0
17
10
Just uploaded slides about Netusse,
#FreeBSD
CVE-2013-3077 and its exploitation.
http://t.co/PjRMDg9dW1
0
25
9
Interesting VML CVE-2013-2551 exploit using techniques described by
@VUPEN
http://t.co/oQZoBs9Rxe
/cc
@n_joly
1
13
8
#phrack68
topics disclosed on
http://t.co/pmVWz1Du,
jemalloc, android rootkit, IIS and VLC pwnage... looks awesome hum! f5f5f5! :)
0
21
7
@wdormann
@attritionorg
@maddiestone
@5aelo
RCE discovered in the wild targeting Chrome on Android. We haven't recovered the whole exploit chain but the RCE was highly likely followed by SBX+LPE. No calc :-)
0
0
6
FreeBSD-HEAD analyzed with clang-analyzer, very interesting stuff inside...
http://t.co/Zl4diEKN
;-)
0
4
5
Here is my
#POC
for
#PERL
glob() bug of this morning
http://t.co/TbnikPt.
No code execution yet. Anyone interested by the challenge? :)
1
7
4
I debug Linux kernel through vbox using the great
@fotisl
howto
http://bit.ly/kk9BdW
but I needed this patch
http://bit.ly/hDr6Ac.
0
6
4
Woot
#FreeBSD
finally patched one of my vulnerability reported more than one year ago,
http://t.co/zqHXnUtQWX.
2
8
4
1
1
3
http://t.co/yeerFHRm
a bit old but nice summary of all the different kind of uninitialized variable vulnerabilities by mercy.
0
4
3
@roman_soft
@ebeip90
yea same here, very useful gadget, was mentioned by
@DragonSectorCTF
guys in this preso.
http://t.co/FqQbVEpVkB
0
0
3
@ItsReallyNick
@cglyer
We might have a similar rule, heh. Hopefully one day we will be able to release more details about these exploits. Qihoo might release details for this one?
0
0
3
#previoustweet
exploit looks for bookmark.png in memory, unxor with 0x95 and exec PE at offset 0x114bc (5B53C9387F495CBE82F16920970380FB).
0
3
3
0
0
2
Small C code
http://t.co/WMapcbQL
to reproduce the VLC vulnerability. Warning: solution included! :)
0
4
2
http://t.co/Dezzvc02
CVE-2012-2248: isc-dhcp-client build system paths used in -DCLIENT_PATH... meh! :-)
0
2
2
@munmap
Thanks! Yeap, this one was found with
http://t.co/jJypgqunP5.
Gonna release some slides next week on how it can be exploited.
1
0
2
I use this lame python script
http://t.co/u3Z74a3
to retrieve exe from these DownloadExec shellcodes
http://t.co/H0IQOD6
(thanks
@M86Labs
)
0
6
2
For those interested, here is my
#FreeBSD
PoC for the PHP ZipArchive addGlob() vuln
http://t.co/vm6DW05
0
9
2
Tracing
#FreeBSD
kernel malloc() with dtrace is better than patching code with kdb_backtrace(). :) eg:
http://t.co/i0J37JBb
1
6
2
Interesting read. New approaches to operating system security extensibility --
http://t.co/htrjT36y
0
0
1
@artem_i_baranov
also if you want to know on which website the exploit was, just ask google inurl:4802A188.htm. ;-)
0
7
1
Digest->new("::MD5;print 'ownaide\n';exit(1);"); simple and lame
#Perl
#POC
for
http://t.co/CNb4PG8b
:)
1
5
1
@jduck1337
@nbrito
you can try to download them with
http://t.co/E8O9pOmU
it worked for me few months ago.
0
0
1
1
1
1
#HITB2011KUL
slides
http://t.co/fXnKn0gL
@Rogunix
they are many android exploit/malware materials for your collection. :)
1
2
1
Fuck, stage3 of
http://t.co/y8zwXYFb
is an exe compiled under cygwin. Why not a simple ELF? :-(
0
0
1
0
0
1
http://t.co/PVuvy4lW
nice secu^Wannoying bug. Will check if it is in my dividebyzero fuzzing dir. :-)
0
1
1
FYI, Android uses same racoon pkg as IOS but vuln. code (cfparser) is not needed and not compiled
http://t.co/aq0rxgXD.
Same for ICS.
0
6
1
@pyoor_
@Ivanlef0u
Heh, the swf downloads and executes <domain>/calc.exe which is currently the real calc.exe.
1
0
1
@GadixCRK
this vulnerability is also well described in the paper released by the
@matasano
guys who have found it
http://t.co/GqBJkySE
0
2
1
My
#PERL
bug has been fixed
http://t.co/ITclFTy.
Writing a reliable exploit for it on GNU/Linux is a good challenge. :)
1
2
1
http://t.co/rkwUpkqy
fast memory error detector in chrome. Nice feature for all the browser fuzzing ninjas.
0
0
1
Perl script to check kernel stack usage per function
http://t.co/ZG3yMEhP.
It works on
#FreeBSD
.
0
0
1
0
0
1
0
4
1
@alienvault
very interesting, the next step is to check performance and test
@ochsff
libscizzle
http://t.co/3msIprUj
0
0
1
Here is the patch
http://t.co/llfIIZmW
for the lame but working AirOS remote root
http://t.co/GmQFzDC5.
#LOL
0
0
1