In-the-Wild Series: October 2020 0-day discovery
https://googleprojectzero.blogspot.com/2021/03/in-wild-series-october-2020-0-day.html

In October 2020, Google Project Zero discovered seven 0-day exploits being actively used in-the-wild. These exploits were delivered via "watering hole" attacks in a handful of websites pointing to two exploit servers that hosted exploit chains for Android, Windows, and iOS devices. These attacks appear to be the next iteration of the campaign discovered in February 2020 and documented in below blog posts:

Part1: Introducing the In-the-Wild Series
https://googleprojectzero.blogspot.com/2021/01/introducing-in-wild-series.html

Part2: Chrome Infinity Bug
https://googleprojectzero.blogspot.com/2021/01/in-wild-series-chrome-infinity-bug.html

Part3: Chrome Exploits
https://googleprojectzero.blogspot.com/2021/01/in-wild-series-chrome-exploits.html

Part4: Android Exploits
https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html

Part5: Android Post-Exploitation
https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-post-exploitation.html

Part6: Windows Exploits
https://googleprojectzero.blogspot.com/2021/01/in-wild-series-windows-exploits.html

#reverse #expdev #rce #lpe #sandbox #escape #android #ios #windows #chrome #browser #darw1n

https://twitter.com/h0t_max/status/1316028532972281856?s=20

#reverse #intel #microcode

BinDiff 7 beta coming soon. Request yours here: https://docs.google.com/forms/d/e/1FAIpQLSdEPDTnopPEzbXXmTktshVfJb28YiFahYoRfya92yIi5iEFdg/viewform #reverse #dukeBarman

The IDA 7.6 was released!

https://www.hex-rays.com/products/ida/news/7_6/

#reverse #ida #KosBeg

Free Malware Analysis training. Volume 1 via hasherezade https://github.com/hasherezade/malware_training_vol1 (in progress) #reverse #malware #dukeBarman

https://twitter.com/h0t_max/status/1375871849079406597?s=09

#reverse #intel #microcode

D810: Creating an extensible deobfuscation plugin for IDA Pro

https://eshard.com/posts/d810_blog_post_1/

D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation time by modifying IDA Pro microcode.

https://gitlab.com/eshard/d810

#reverse #ida #plugin #deobfucation #obfuscation #QwErTyReverse

Cutter and Rizin will participate in Google Summer of Code!

If you are interested in participating as part of Rizin:

- Instructions: https://rizin.re/gsoc/2021/
- The official GSOC document: https://summerofcode.withgoogle.com/organizations/5718117306597376/
- Join the dedicated mattermost channel: https://im.rizin.re/rizinorg/channels/gsoc-2021-applicants

Official tweet - https://twitter.com/cutter_re/status/1369600822162698241

#reverse #rizin #dukeBarman

Cutter 2.0 Release (Projects enabled!)

https://cutter.re/cutter-2.0

#reverse #rizin #jeisonwi

How the Web Audio API is used for browser fingerprinting

https://fingerprintjs.com/blog/audio-fingerprinting/

#osint #browser #p_rusanov

Spectre v4: Security Analysis of AMD Zen3 Architecture Predictive Store Forwarding https://www.amd.com/system/files/documents/security-analysis-predictive-store-forwarding.pdf #reverse #hardware #amd #dukeBarman

Go-iOS was inspired by the wonderful libimobiledevice. It can do all of what libimobiledevice can do and more. Highlights:

- run XCTests including WebdriverAgent on Linux, Windows and Mac
- start and stop apps
- Use a debug proxy to reverse engineer every tool Mac OSX has, so you can contrib to go-ios or build your own
- use Accessibility Inspector APIs

https://github.com/danielpaulus/go-ios

#reverse #iOS #dukeBarman

BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup.html #exploitation #linux #dukeBarman

Make research, not war. Happy International Day of Human Space Flight!

P.S. Thanks Google Russia for awesome video https://www.youtube.com/watch?v=3Wa0jDAU5hg

Tenet is an IDA PRO plugin for exploring execution traces. The goal of this plugin is to provide more natural, human controls for navigating execution traces against a given binary.

Check it out: https://blog.ret2.io/2021/04/20/tenet-trace-explorer/

#idapro #reverseengineering #idapython #KosBeg

A foray into Linux kernel exploitation on Android https://mcyoloswagham.github.io/linux/ #exploitation #android #linux #dukeBarman

R.I.P Dan Kaminsky, a legend in network security (DNS security flaws, Sony Rootkit infections and more). Thanks for your researches and inspiration https://www.circleid.com/posts/20210424-security-researcher-dan-kaminsky-has-died

Helper plugin for analyzing UEFI firmware https://github.com/zznop/bn-uefi-helper #reverse #uefi #BinaryNinja #dukeBarman

Tools for analyzing UEFI firmware using radare2 https://github.com/binarly-io/uefi_r2 #reverse #radare2 #uefi #dukeBarman

Simple, two file immediate mode gui framework written in C++17, mainly aimed for people beginning their journey with game hacking (but not limited to) https://github.com/zxvnme/zgui #reverse #dukeBarman

Exploiting memory corruption vulnerabilities on Android https://blog.oversecured.com/Exploiting-memory-corruption-vulnerabilities-on-Android/ #android #exploitation #dukeBarman