ash
@repne.bsky.social
Currently focused on Red Teaming/Adversarial Simulation @ Google. Previously App Sec, Malware RE and Threat Intel. I also like video games and general tech.
This esp32 "bluetooth backdoor" doesn't sound very different from what @naehrdine.bsky.social + crew found in bcm43xx to develop github.com/seemoo-lab/i...
March 9, 2025 at 1:16 AM
This esp32 "bluetooth backdoor" doesn't sound very different from what @naehrdine.bsky.social + crew found in bcm43xx to develop github.com/seemoo-lab/i...
A watched fuzzer never boils...
March 6, 2025 at 3:50 AM
A watched fuzzer never boils...
Reposted by ash
I got Linux running in a PDF file using a RISC-V emulator.
PDFs support Javascript, so Emscripten is used to compile the TinyEMU emulator to asm.js, which runs in the PDF. It boots in about 30 seconds and emulates a riscv32 buildroot system.
linux.doompdf.dev/linux.pdf
github.com/ading2210/li...
PDFs support Javascript, so Emscripten is used to compile the TinyEMU emulator to asm.js, which runs in the PDF. It boots in about 30 seconds and emulates a riscv32 buildroot system.
linux.doompdf.dev/linux.pdf
github.com/ading2210/li...
January 31, 2025 at 8:02 PM
I got Linux running in a PDF file using a RISC-V emulator.
PDFs support Javascript, so Emscripten is used to compile the TinyEMU emulator to asm.js, which runs in the PDF. It boots in about 30 seconds and emulates a riscv32 buildroot system.
linux.doompdf.dev/linux.pdf
github.com/ading2210/li...
PDFs support Javascript, so Emscripten is used to compile the TinyEMU emulator to asm.js, which runs in the PDF. It boots in about 30 seconds and emulates a riscv32 buildroot system.
linux.doompdf.dev/linux.pdf
github.com/ading2210/li...
Reposted by ash
Positive Technologies has developed a new attack that exploits the SD Express standard to gain access to a device's memory through its SD card reader
The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe
swarm.ptsecurity.com/new-dog-old-...
The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe
swarm.ptsecurity.com/new-dog-old-...
December 8, 2024 at 11:11 AM
Positive Technologies has developed a new attack that exploits the SD Express standard to gain access to a device's memory through its SD card reader
The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe
swarm.ptsecurity.com/new-dog-old-...
The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe
swarm.ptsecurity.com/new-dog-old-...
Reposted by ash
I should write a bittorrent client
November 30, 2024 at 7:26 AM
I should write a bittorrent client
Reposted by ash
November 25, 2024 at 2:51 PM
Reposted by ash
How does the new iOS inactivity reboot work? What does it protect from?
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
Reverse Engineering iOS 18 Inactivity Reboot
Wireless and firmware hacking, PhD life, Technology
naehrdine.blogspot.com
November 17, 2024 at 9:42 PM
How does the new iOS inactivity reboot work? What does it protect from?
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
Looking at this list of 2023 routinely exploited issues It's always interesting to look at the split between memory safety issues and bug classes. https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-317a
November 15, 2024 at 3:42 AM
Looking at this list of 2023 routinely exploited issues It's always interesting to look at the split between memory safety issues and bug classes. https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-317a
A brief history of Cyrix https://www.abortretry.fail/p/a-brief-history-of-cyrix
November 14, 2024 at 6:32 AM
A brief history of Cyrix https://www.abortretry.fail/p/a-brief-history-of-cyrix
Anyone got a sample?
Here's why Adam thinks a Linux malware variant that recently turned up in Russia was probably developed by Western SIGINT. More details in this week's Risky Business podcast, available on YouTube (www.youtube.com/watch?v=s7iP...) or wherever you get your audio podcasts...
November 14, 2024 at 12:56 AM
Anyone got a sample?
Reposted by ash
Talks from the Hexacon 2024 security conference, which took place earlier this month, are available on YouTube
www.youtube.com/playlist?lis...
www.youtube.com/playlist?lis...
HEXACON 2024 - YouTube
www.youtube.com
November 10, 2024 at 12:00 PM
Talks from the Hexacon 2024 security conference, which took place earlier this month, are available on YouTube
www.youtube.com/playlist?lis...
www.youtube.com/playlist?lis...
Great presentation on macOS sandbox escapes https://github.com/jhftss/jhftss.github.io/blob/main/res/slides/A%20New%20Era%20of%20macOS%20Sandbox%20Escapes.pdf
November 11, 2024 at 4:57 AM
Great presentation on macOS sandbox escapes https://github.com/jhftss/jhftss.github.io/blob/main/res/slides/A%20New%20Era%20of%20macOS%20Sandbox%20Escapes.pdf
Reposted by ash
You can do some magical things with paths on Windows. If you haven’t seen it before JonasLyk’s work on “webdav based reflective loader/per process devicemap based dll injector POC” is a work
of art. Search his handle + webdav on X for some commentary
github.com/jonaslyk/tem...
of art. Search his handle + webdav on X for some commentary
github.com/jonaslyk/tem...
github.com
November 11, 2024 at 2:28 AM
You can do some magical things with paths on Windows. If you haven’t seen it before JonasLyk’s work on “webdav based reflective loader/per process devicemap based dll injector POC” is a work
of art. Search his handle + webdav on X for some commentary
github.com/jonaslyk/tem...
of art. Search his handle + webdav on X for some commentary
github.com/jonaslyk/tem...
I remember when we only had to worry about Dr Watson :) www.wired.com/story/sophos...
Inside a Firewall Vendor's 5-Year War With the Chinese Hackers Hijacking Its Devices
Sophos went so far as to plant surveillance “implants” on its own devices to catch the hackers at work—and in doing so, revealed a glimpse into China's R&D pipeline of intrusion techniques.
www.wired.com
November 11, 2024 at 3:57 AM
I remember when we only had to worry about Dr Watson :) www.wired.com/story/sophos...
New here but I'm feeling optimistic that this might actually replace what infosec twitter used to be
November 11, 2024 at 3:37 AM
New here but I'm feeling optimistic that this might actually replace what infosec twitter used to be