A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering

Wow

@richinseattle People love false equivalences, who think drone shows > F-35 are the same people who think EDR stack > 0day protection. If this is his security logic, I’m worried about security of Tesla & Starlink.

@hardik05 First debugger & dissembler : a hex editor (for sdram and flash) and debugger/dissembler written by me and my friend on a customized 6502 core embedded system.

@oct0xor @2igosha talked about this back to 2012

@cherepanov74 and more

Developed a simple tool for Black Myth: Wukong that enables 32:9 aspect ratio. available on GitHub if anyone's interested.

@BlohoJo @0patch It's not easy to patch this vulnerability directly because tcpip.sys is in the region protected by PatchGuard, and the related code is difficult to locate. However, with our ZerodayInsight product, we can patch it for various operating systems.

RT @XiaoWei___: MSRC fixed a RCE bug in TCPIP module. I found the bug several months ago. Its score is 9.8 and exploitation is more likely.…

RT @NikitaTarakanov: In-the-wild recent kernel LPE 0day in afd.sys (CVE-2024-38193) is in Registered Input/Output (RIO) API Extensions agai…

Portions of PoC seems to have been public today

0Click Windows Tcpip RCE found by Kunlun Lab. We offer intel services for proactive defense to critical vulnerabilities. Contact to learn more.

Congrats @KeyZ3r0

RT @FuzzySec: Super hyped to hear @KeyZ3r0 got the RCE pwnie as well 🌶️🔥. I've been doing work manifesting for my own top picks haha 😆 http…

@aionescu @CrowdStrike @dwizzzleMSFT Wow you’re finally back!

This vulnerability is as critical as BlueKeep or EternalBlue. while Microsoft still ranked it as 'Exploitation less likely.' Urgent need for independent, closed-source vulnerability intelligence.

@TinySecEx very shallow and superficial analysis, with some incorrect points, as well as irresponsible and unverified speculative conclusions. Since so much time has passed, should make more effort.

@HaifeiLi I knew that major Chinese firewall/VPN vendors like Huawei, Sangfor, and QI-ANXIN have launched bug bounty programs with quite generous rewards. I'm not entirely sure how US. companies compare in this regard.

RT @TecR0c: Fascinating MSMQ talk by @guhe120, @KeyZ3r0, & @4zure9 on their msrc CVEs. Their exploitation is very clever bypassing all miti…

RT @POC_Crew: [POC2023] Keynote on vulnerability insights @mj0011sec giving his talk on “Navigating the light and darkness in the world of…