🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

⚠️ IMPORTANT A set ("5Ghoul") of new major security flaws in 📡 5G mobile network modems impact 714 smartphones models from all major brands—including #Apple, Samsung, #Google, Xiaomi, #OnePlus and more. Details on 5Ghoul here: thehackernews.com/2023/12/new-5g… #cybersecurity #technews

Nice writeup discussing SIM card-related security aspects Credits Orange Cyberdefense's SensePost Team sensepost.com/blog/2022/sim-… #sim #infosec

This was a great blog post by Man Yue Mo on Pixel 6 arbitrary kernel code execution and root privileges from a malicious apps github.blog/2023-04-06-pwn… #android #cybersecurity #exploit

So yes, we really did exploit an car IVI to run a playable doom, complete with touchscreen interaction!

My latest contrib to google's binja-hexagon was merged, now with readable system registers. Grab it here for personal enjoyment: github.com/google/binja-h…

Interesting project attempting to reverse engineering the precompiled Wi-Fi stack of ESP32 SoC to recreate an open source version Part 1: zeus.ugent.be/blog/23-24/ope… Part 2: zeus.ugent.be/blog/23-24/esp… Repo: github.com/esp32-open-mac… #esp32 #infosec

New Blog: Ghidra nanoMIPS ISA module research.nccgroup.com/2024/05/07/ghi…

What’s that you say? — You need NanoMIPS support to look at your 5G modem image with easy/free access? Have no fear! Check out our new open source nanoMIPS Ghidra module! 🥳

Happy to announce Robert Herrera and myself will be presenting about Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap at BlackHat USA this year! We will demo remotely compromising the device and capturing audio. blackhat.com/us-24/briefing…

New Blog: Enumerating System Management Interrupts research.nccgroup.com/2024/06/10/enu…

Don't forget! Tomorrow, on the 8th at 11:20am PST Alex Plaskett and Robert Herrera present Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap at Black Hat #BHUSA

We’ve got a couple of really cool PoCs to show off for tomorrow’s talk. Be sure to stop by!

I’m just now starting to process the immense amount of emotions I have about getting the opportunity to present at BlackHat and meet some super smart people. Huge shout out to Alex Plaskett for encouraging me to co-present with him! 🙏 #BHUSA

40 page whitepaper on Exploiting Sonos One Over-The-Air talk! nccgroup.com/media/uzbp3ttw…

🇬🇧🇬🇧 Not long now till myself and McCaulay talk about exploiting an EV charger controller and our approach in London.

A great opportunity to work with some exploit wizards and masters of their craft! 🙌

Anybody fairly familiar with modifying or augmenting QEMU (specfically Avatar-QEMU) please DM me :) I'm trying to add onto it and failing miserably thus far and have a lot of questions.

b1ack0wl We have a Gidra fork with MIPS16e2 support here if you're too lazy to write it github.com/FirmWire/ghidra

More details about CVE-2024-44068 - it’s part of an EoP chain in the wild: googleprojectzero.github.io/0days-in-the-w…

🏠🔓 Is your alarm system truly safe? #PowerG is used everywhere, but its secrets were locked tight—until now. James Chambers and Sultan Qasim Khan reverse engineered the protocol, found a major flaw, and they’re sharing the results at #hw_ioUSA202 👉hardwear.io/usa-2025/speak…