People often ask about how windows Kernel memory allocations work ever since the introduction of the segment heap into ring 0.

Stephen Sims An awesome talk about many of these changes was also done back in 2021 by Yarden Shafir i.blackhat.com/USA21/Wednesda…

Got my ticket, hotel & flight booked for DEF CON Last year was my 1st time, thanks to winning a free trip via Stephen Sims & Off By One Security members. Thanks to that trip, I was able to land my 1st cybersecurity job & now they're sending me this year!

Perhaps one of the most badass CVE's I've ever seen from neils 💪😤 cisa.gov/news-events/ic…

If there's interest I was thinking about doing a stream for an hour this Friday while I'm teaching a class on introductory Windows exploit development. Next Friday I'm hoping to continue turning the recent patch diff we did on ole32.dll into a crash condition PoC.

Fuzzing Linux Kernel Modules, with Slava Moskvin Stream by Slava Moskvin | Path Cybersec hosted by Stephen Sims about building a custom fuzzer to rediscover CVE-2025-0927 in the HFS+ filesystem implementation. youtube.com/live/uCcsZrXyL…

I will be streaming a portion of the SANS SEC660 course I'm teaching today in DC on Introduction to Windows Exploit Development. We will use ROP to get around DEP on Windows 11. 1PM PT youtube.com/watch?v=cbIEwz…

Exploiting a Windows Application Using Return Oriented Programming x.com/i/broadcasts/1…

Join me this Friday at 11AM PT on the Off By One Security stream with the good folks from dreadnode for a session on offensive/adversarial AI. Details coming soon!

Join me this Friday at 11AM PT on the Off By One Security stream with the team from dreadnode for a session on "Building and Deploying Offensive Security Agents!" youtube.com/live/BzOmGw-La…

Rise and shine! We're going live on Off By One with Stephen Sims this afternoon—meet us here at 11 AM PT: youtube.com/live/BzOmGw-La…

Building and Deploying Offensive Security Agents with Dreadnode x.com/i/broadcasts/1…

Thanks to the team dreadnode for joining me for an informative stream today! You can watch the recording on YouTube here: youtube.com/watch?v=BzOmGw… Off By One Security

We're almost at 30K subscribers on YouTube, have over 100 videos, passed 50K hours watched, and are up to 21 members! Please consider helping us to promote the channel to get a wider reach! All proceeds go back to the community! youtube.com/@OffByOneSecur…

Introducing: Hells Hollow - Thought rootkit SSDT hooking was dead? Following my previous work, I have managed to essentially reintroduce SSDT hooks, capable of modifying the *original* KTRAP_FRAME and more! Whitepaper: fluxsec.red/hells-hollow-a… #infosec #cybersecurity

The heavily updated version of the Advanced Exploit Dev course "SEC760" with my coauthor Alexandre Becholey was just recorded and available at sans.org/sec760 Updates include Linux Chrome V8 Exploitation, IDA 9.1, Kernel Debugging Windows Mitigations, 2025 patch diffs, etc...

While most vendors ship timely patches for vulnerabilities reported by Project Zero, they don’t always reach users. Today, we’re announcing Reporting Transparency, a new policy to encourage downstream fixes googleprojectzero.blogspot.com/2025/07/report…

The Off By One Security stream will return next Friday as we are at DEF CON this weekend.