🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

i almost forgot this is the whole point (montage of me smiling reading kernel code with no bugs in it)

ok sick, make claude good then

notifications broken rn?

This is a good resource on how to use github.com/0vercl0k/wtf to find bugs in Microsoft's Defender Malware Protection Engine 🔥: labs.infoguard.ch/posts/attackin… by Manuel Feifel

week 69, streaming kernel dev right now topic: boot / grub / multiboot last week we finished the MIT course, so we'll begin with side quests. starting with: porting the OS to use grub/multiboot instead of a custom MBR bootloader see ya 👋 youtube.com/live/be-fo3soY…

Bypassing kASLR via Cache Timing by ö r0keb.github.io/posts/Bypassin…

got grub/multiboot integration working! now able to boot with grub, and also receive kernel command line args was actually much easier than i anticipated. just need to make a slight tweak to how the _start symbol was declared in the legacy bootloader, it jumps directly to the

making a semantically equivalent frankenstein's monster out of your fuzzing target is most of the fun in fuzzing (outside of making the fuzzer itself)

I have to find my remote new job again. Last company was not a real company 😭 I was a N-day and 0-day researcher. Please send a DM message. I like hard projects to improve my skills.

nothing has been more empowering for me than making a concerted effort to cook healthy meals for myself. it's extremely psychologically rewarding. it's also made my training much better, even if the gains are purely psychological/placebo. off-topic but free life hack

its funny to me that to get good VR results from LLMs, part of the prompt has to be you pumping the LLM up, like "You're an elite vulnerability researcher. You love this shit."

this is so insane. kCTF has a first-come-first-serve policy when it comes to 0day bounties when an instance releases. this team hand crafted a proof of work solver with avx-512 instructions to beat everyone else with an 0day to the flag: anemato.de/blog/kctf-vdf

Oops, we just pwned the kernelCTF mitigation instance with a 0day😳 Our fellow pwner syst3mfailure has picked up pigeon feeding as a hobby to help him cope with the insanity

Another year, another Linux PE at TyphoonPwn ;)

cool bug discovery pattern ive seen in kCTF over the years repeatedly that i would think was unlikely: 1. person finds intricate state machine bug leading to downstream corruption in new attack surface 2. crowd follows, finds much simpler bugs in the same surface hard -> easy

YTD after May: 8 kernel bugs, 1 exploitable, still the 2 unsuccessful kCTF entries. not a lot of bug hunting this month, but a good find regardless. not many goals left this year, obvious goal left is find an exploitable bug with Lucid

week 70, streaming kernel dev topic: booting with grub this is the prequel to last week's stream. Porting the os to a basic grub setup (pre-recorded since I'm away) youtube.com/watch?v=2GGB_p…