Grow your curiosity and keep thinking outside the box. Hack the planet. #jesuispolito

Full Disclosure: how we won #m0lecon #CTF thanks to AWS and Docker 1/n

The good thing about CTFs is that both players and organizers can learn something new every time. GG!

Bad CTF Bingo

"Corellium, a security research firm sued by Apple, has won a major legal victory against the iPhone maker. A federal judge in Florida threw out Apple’s claims that Corellium violated copyright law with its software, which helps security researchers find bugs and security holes."

To close out 2020, we bring you JavaScriptCore Internals Part 2, a guide on Llint and baseline JIT for exploit development. zon8.re/posts/jsc-inte… We wish all a Happy New Year. May 2021 bring you shells o' plenty. But above all the chance to reunite with friends ✌️

🎉 Our big 2020 research is finally public 🎉 Discover how polict went from close-to-0 knowledge in fuzzing to crafting 13 0-days in @Telegram! shielder.it/blog/2021/02/h…

We are excited to release Cutter v2.0 — our first release with Rizin 🚀 We introduce major improvements to Cutter, including support for Projects, Reverse Debugging, better stability, and more. Learn more in our blog post: cutter.re/cutter-2.0

'90s hackers in 2021

We are pleased to announce tmp.0ut Vol. 1 tmpout.sh/1/

Congrats! Keep pwning hard! 🎉

this was quite a fun bug!

Goten Facebook Security Mario Del Gaudio zi0Black Francesco Enrietti JBZ is not associated with any former, present, or future team member which participates in a CTF / event and does not get disqualified. #faketaxi #6ofsouth #barbapapa

👋🏿 hackers, make sure to check your inbox - we started sending the invites for #TumpiCon2023! If you did not receive one and you like to join us: DMs are open (pro tip: proposing a talk is an awesome way to raise your chances of receiving an invite 😉).

👀

🚨 New Open Source Audit Alert! 🚨 Shielder, with OSTIF Official & CNCF, audited Karmada: 🔍 6 issues found (1 high, 1 medium, 2 low, 2 info) ✔️ Most fixed, others planned. 🗣️ to Pit and TheZero 🍉 on BlueSky Full details in the blog post! shielder.com/blog/2025/01/k…

Hey hackers! We’ve started sending out the first invites — check your inbox! 👀 Didn’t get one? Take the fast track and submit a talk!

One of my old Google VRP (Google Bug Hunters) reports just went public -- check it out if you want to see an example of CEF exploitation. bughunters.google.com/reports/vrp/qM…

Last week Apple released MacOS 13.4 which contains a fix for a vulnerability Pit exploited to escape the Sandbox. Update now and stay tuned for the technical details! Ref: support.apple.com/en-us/122373

🚨 New Open Source Audit Alert! 🚨 Shielder, with OSTIF Official & Academy Software Foundation, audited OpenEXR and MaterialX: 🔍 11 issues found (1 critical, 3 still to be published) ✔️ Most fixed, others planned 🗣️ to nico smaury Pit TheZero 🍉 on BlueSky Full details in the blog post ⬇️🧵