🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Here are the slides for my keynote, 'Mobile Exploitation, the past, present, and the future' at #Zer0Con2023. Zer0con was a blast as always, thank you POC_Crew 👨‍👩‍👦‍👦!! 🚀💫 github.com/externalist/pr…

A playlist with 4 hours of C++20 talks from Chromium team. Great discussion of some “why’s”. youtube.com/playlist?list=…

[design doc]Wasm Code Coverage docs.google.com/document/d/1Na…

My writeup for CVE-2024-7971. Just a POC. Let me know if u have any questions. github.com/mistymntncop/C…

🥶

It's a good rce bug, just spend a day on the crash analysis and the bounty could at least getting doubled😂

Has anyone successfully compiled Chromium using Bazel RBE/Reclient? I've tried Buildbarn and Buildfarm without luck(does not implement grpc `proxy.Commands` services), NativeLink with a bunch of Nix and other trendy but not user friendly tech stack and also failed😅

Some of my analysis of several Map related bugs and vulnerabilities while learning v8. xia0.sh/blog/visit-the…

Alexei Bulazel Story behind CVE-2024-44308 and CVE-2024-44309 added in cloud.google.com/blog/topics/th…

"This was discovered during a test run of a WIP v8 sandbox fuzzer."🫡

👍🏻

👍🏻

pwn2own lineup takeaways: - no chrome or safari, only firefox for browser - plenty of windows and linux eop, no macos - a LOT of nvidia triton server (curious how many dupes there will be) - 2 sharepoint and 2 esxi!!! ($$$$) best of luck to everyone competing!! 🙏

0-day discovery and exploit engineering are cognitively orthogonal in how they challenge inherent limits of the human brain. In this video our exploit architect Alisa Esage Шевченко talks through the root level of what makes either hard, & how to deal with it: youtu.be/QFWPxji5egI?fe…

Thanks to everyone participating in my last event about MMIO & UART of SimpleProc8 This Friday we'll talk about QEMU structure, pseudo-stack and peek around the bninja plugin. event: discord.gg/ZUDQV5zy?event… code: github.com/fuzzsociety/Si… slides: docs.google.com/presentation/d…

[$20000][395659804][sandbox]V8sbx bypass, arbitrary native code execution (without JIT page overwrite) via on-stack replacement DeoptimizationData confusion with BytecodeArray issues.chromium.org/issues/3956598… PoC: issues.chromium.org/action/issues/… Reported by Seunghyun Lee (Xion)

😅 (CVE-2025-5280)[417169470][turboshaft]OOBW chromereleases.googleblog.com/2025/05/stable… PoCs in previous post. ./d8 --allow-natives-syntax --turbofan chromium.googlesource.com/v8/v8/+/37d6fa… chromium.googlesource.com/v8/v8/+/37d6fa… chromium.googlesource.com/v8/v8/+/37d6fa… chromium.googlesource.com/v8/v8/+/37d6fa…

Exploited ITW (CVE-2025-5419)[420636529][turbofan]OOBRW chromium-review.googlesource.com/c/v8/v8/+/6594… chromereleases.googleblog.com/2025/06/stable… Reported by Clément Lecigne(clem1) and Benoît Sevens

When life gives you tangerines🍊 Intern Lin Ze Wei's task: Port a 2-bug exploit to Pixel 6 Pro Problem: One bug "doesn't work" Solution: Make it work with 1 bug Sometimes the best research comes from working with what you think you have starlabs.sg/blog/2025/06-s…

👉🏻