RT @qriousec: A brief JavascriptCore RCE story by @lanleft_ and An Nguyễn

@bienpnn tysm 🥰

@bienpnn @tacbliw no no no, not completely, I've only worked on the exploitation part so far, haven't found any vulnerability by myself yet, might be lack of this fundamenetal knowledge :D

@tacbliw My friend gave me this book, I ended up quickly after first chapter and never picked it up again. It still sits untouched on my bookshelf xD

RT @qriousec:

RT @qriousec: Santa gave us freshly new JSC 0day ✌️

RT @__suto: Made a brief slide summarizing OTHERS ’ reports on V8 WebAssembly Engine. Hope you find it helpful!

Everytime working with opensource projects 🥲

RT @__suto: Today, me, @lanleft_ and @trichimtrich have submitted our latest report on Chromium detailed an information leak in ANGLE, wh…

RT @qriousec: Our teammate @__suto has just pwned V8 JavaScript engine on Google's V8CTF version M120 using a 0-day exploit.

RT @NobelPrize: Some advice from physics laureate Frank Wilczek to kick off 2024.

@Enigmatrix2000 Good luck to you 😆😆😆

RT @PhysInHistory: “Study the science of art and the art of science. Learn how to see. Realize that everything connects to everything else.…

RT @notselwyn: I wrote a new blogpost about adding ksmbd (SMB server in the Linux kernel) fuzzing functionality to Syzkaller. Feel free t…

RT @starlabs_sg: In our latest blog post, we're proud of our intern, @KaligulaSec for delivering a quality post "prctl anon_vma_name: An Am…

RT @nixcraft: True story 👇👩🏻‍💻☺️

RT @bienpnn: PoC for CVE-2023-31248. This was used to exploit Ubuntu Desktop at Pwn2Own Vancouver 2023.

RT @starlabs_sg: "Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability" is by our former inte…

my exploitation for cve2023-1829 😅

@bienpnn 😢