If you are a user of the #Amazon #FreeRTOS, check their latest security update It includes important security patches solving the issues described in my D-Box paper ( presented at @NDSSSymposium 2022.

RT @Law1iar: Putting twitter to serious use the first time😂. Just want to share our incoming UsenixSec'24 paper. We managed to make concoli…

RT @lavados: Artifact fully reproduced

RT @Fox0x01: Time for an Arm-twist! CVE-2023-4039 Tom Hebb (Meta red team) and I discovered an 0day in GCC (for AArch64 targets) during my…

RT @Fox0x01: Overwhelmed by all the support I’m receiving from the community. 🥹🙏🏼 As a small thank you, I made all my high-resolution Arm…

RT @tgianko: Hello twiXerverse! On my way back from @USENIXSecurity in LA, I did one or two things you may like but that we didn't need: ba…

RT @moyix: Looks like more folks are starting to look at using ML models for decompilation :)

@AndreasZeller That looks like a classic boilerplate for a meaningless R2 that usually says nice things but ultimately is a strong rejection because reviewer has no clue about what he is reviewing or maybe did not read the paper at all.

Credits also go to our SecLab team: Yi Hui Chen, @gracesrm, Engin Kirda, and @_longlu_ at @Northeastern @KhouryCollege. Source code available at

@_dr_bea @dasaptaerwin @AcademicChatter That works also practice pronunciation of key words then you get use to present in public, even with tiny errors it is fine as long as you deliver the message and have eye catching slides

RT @thorstenholz: A critical reflection on the reviewing culture in computer science (not only computer security, but I agree with many of…

RT @BahruzJabiyev: About our @USENIXSecurity paper: HTTP/2-to-HTTP/1 conversion anomalies were first looked at by @albinowax and @emil_le…

RT @jomaoppa: how programmers overprepare for job interviews

@AldoCassola No te das cuenta que hablas o usas palabras del Quechua hasta que sales al extranjero y no te entienden, y viceversa no entiendes cuando usan palabras de otras lenguas nativas, o escuchan mucho a Bad Bunny y hablan como tal, pero ese es otro tema...

@mboehme_ This is true, the novelty factor will be higher, and the bar set by the state of the art will be lower so you can beat comparable (if existing) solutions and push the envelope forward.

@rhlchatterjee Dejavu... please do it so you (reviewers) at least have a chance to admit your ignorance. When ego is denser than facts.

@moyix True again, but then the risk of false positives is higher. Then we are in the field of emulation fidelity... In any case, nice work 👏

@nicole__logan Congrats! Dr.

@moyix That is true, but MCU vendors may share one single hardware interrupt line with multiple peripheral interrupts. In this case, it is still necessary to evaluate more MMIO registers to dispatch the right function. These MMIO registers may not be part of the snapshot yet.