0xAb
LightNews LightNews
0xab.bsky.social
0xAb
@0xab.bsky.social
31 followers 27 following 6 posts
Malware researcher, also interested in Mobile vulnerability research
Posts Replies Media Videos
Reposted by 0xAb
pr0me.bsky.social
the recording of my talk "Rethinking Emulation for Fu(zzi)n(g) and Profit: Near-Native Rehosting for Embedded ARM Firmware" is online!

I had an absolute blast speaking and being at
@re-verse.io, so many great talks and hallway discussions
re-verse.io RE//verse @re-verse.io · Apr 11
We were slow with the last video update so we figured we'd do a two for one! Lukas talks about rehosting firmware for fuzzing (youtu.be/o_ckTnTQlfs) and Robin shows off a fantastic new tool for exploring code relationships beyond single binaries (www.youtube.com/watch?v=LsDn...)
RE//verse 2025: Rethinking Emulation for Fu(zzi)n(g) (Lukas Seidel)
Full title: Rethinking Emulation for Fu(zzi)n(g) and Profit: Near-Native Rehosting for Embedded ARM FirmwareSlides: https://github.com/binarly-io/Research_Pu...
youtu.be
April 13, 2025 at 9:07 AM
0xab.bsky.social
How the linux kernel starts a process

iq.thc.org/how-does-lin...
How does the Linux Kernel start a Process
Stack smashing: How Linux creates the stack and runs a program. Then mess with it.
iq.thc.org
February 25, 2025 at 8:04 PM
Reposted by 0xAb
gr4yf0x.bsky.social
Really great read by @h0mbre (on X) about his journey to exploit a Linux n-day on kCTF. Not only the exploit but the process to understand the bug including own failures, e.g. deal with CONFIG_DEBUG_LIST, is full of insights. h0mbre.github.io/Patch_Gappin...
Patch-Gapping the Google Container-Optimized OS for $0
Background I’m trying to really focus this year on developing technically in a few ways. Part of that is reviewing kCTF entries. This helps me get a sense of what subsystems are producing the most bug...
h0mbre.github.io
February 17, 2025 at 6:31 PM
Reposted by 0xAb
jduck.me
I'm giving a talk at BOOTSTRAP25 in Austin! Hope to see y'all there! ringzer0.training/bootstrap25-...
TALK: Musing from Decades of Linux Kernel Security Research // Joshua J. Drake
The Linux Kernel powers billions of devices across industries, making it critical infrastructure. But is it secure? Josh explores this by comparing its security investments to a typical SDLC, sharing ...
ringzer0.training
February 18, 2025 at 7:04 PM
0xab.bsky.social
Evil Never Sleeps: When Wireless Malware Stays On After Turning Off iPhones

paper: arxiv.org/pdf/2205.06114
code: github.com/seemoo-lab/i...
github.com/seemoo-lab/f...
January 7, 2025 at 7:35 AM
0xab.bsky.social
TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution

Code github.com/compsec-snu/...
paper arxiv.org/abs/2406.08719
arxiv.org
December 29, 2024 at 10:13 PM
Reposted by 0xAb
gr4yf0x.bsky.social
Interesting paper by Erin Avllazagaj to automatically find Linux kernel objects being potentially useful for privilege escalation, tool is called SCAVY. www.usenix.org/system/files...
www.usenix.org
November 22, 2024 at 9:44 AM
Reposted by 0xAb
naehrdine.bsky.social
How does the new iOS inactivity reboot work? What does it protect from?

I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.

naehrdine.blogspot.com/2024/11/reve...
Reverse Engineering iOS 18 Inactivity Reboot
Wireless and firmware hacking, PhD life, Technology
naehrdine.blogspot.com
November 17, 2024 at 9:42 PM
Reposted by 0xAb
dmnk.bsky.social
Slides for my @ekoparty talk "Advanced Fuzzing
With LibAFL"
- >
docs.google.com/presentation...
Advanced Fuzzing With LibAFL @ Ekoparty 2024
Advanced Fuzzing With LibAFL Dominik Maier Ekoparty 2024-11-15 1
docs.google.com
November 15, 2024 at 7:27 PM
0xab.bsky.social
The cost of a NAND chip off attack is 170.87€

www.errno.fr/NAND_chip_of...
November 14, 2024 at 1:56 PM
0xab.bsky.social
code repo: github.com/xairy/lights...
slides: docs.google.com/presentation...
November 12, 2024 at 5:19 PM