https://twitter.com/h0t_max/status/1375871849079406597?s=09

#reverse #intel #microcode

D810: Creating an extensible deobfuscation plugin for IDA Pro

https://eshard.com/posts/d810_blog_post_1/

D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation time by modifying IDA Pro microcode.

https://gitlab.com/eshard/d810

#reverse #ida #plugin #deobfucation #obfuscation #QwErTyReverse

Cutter and Rizin will participate in Google Summer of Code!

If you are interested in participating as part of Rizin:

- Instructions: https://rizin.re/gsoc/2021/
- The official GSOC document: https://summerofcode.withgoogle.com/organizations/5718117306597376/
- Join the dedicated mattermost channel: https://im.rizin.re/rizinorg/channels/gsoc-2021-applicants

Official tweet - https://twitter.com/cutter_re/status/1369600822162698241

#reverse #rizin #dukeBarman

Cutter 2.0 Release (Projects enabled!)

https://cutter.re/cutter-2.0

#reverse #rizin #jeisonwi

How the Web Audio API is used for browser fingerprinting

https://fingerprintjs.com/blog/audio-fingerprinting/

#osint #browser #p_rusanov

Spectre v4: Security Analysis of AMD Zen3 Architecture Predictive Store Forwarding https://www.amd.com/system/files/documents/security-analysis-predictive-store-forwarding.pdf #reverse #hardware #amd #dukeBarman

Go-iOS was inspired by the wonderful libimobiledevice. It can do all of what libimobiledevice can do and more. Highlights:

- run XCTests including WebdriverAgent on Linux, Windows and Mac
- start and stop apps
- Use a debug proxy to reverse engineer every tool Mac OSX has, so you can contrib to go-ios or build your own
- use Accessibility Inspector APIs

https://github.com/danielpaulus/go-ios

#reverse #iOS #dukeBarman

BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup.html #exploitation #linux #dukeBarman

Make research, not war. Happy International Day of Human Space Flight!

P.S. Thanks Google Russia for awesome video https://www.youtube.com/watch?v=3Wa0jDAU5hg

Tenet is an IDA PRO plugin for exploring execution traces. The goal of this plugin is to provide more natural, human controls for navigating execution traces against a given binary.

Check it out: https://blog.ret2.io/2021/04/20/tenet-trace-explorer/

#idapro #reverseengineering #idapython #KosBeg

A foray into Linux kernel exploitation on Android https://mcyoloswagham.github.io/linux/ #exploitation #android #linux #dukeBarman

R.I.P Dan Kaminsky, a legend in network security (DNS security flaws, Sony Rootkit infections and more). Thanks for your researches and inspiration https://www.circleid.com/posts/20210424-security-researcher-dan-kaminsky-has-died

Helper plugin for analyzing UEFI firmware https://github.com/zznop/bn-uefi-helper #reverse #uefi #BinaryNinja #dukeBarman

Tools for analyzing UEFI firmware using radare2 https://github.com/binarly-io/uefi_r2 #reverse #radare2 #uefi #dukeBarman

Simple, two file immediate mode gui framework written in C++17, mainly aimed for people beginning their journey with game hacking (but not limited to) https://github.com/zxvnme/zgui #reverse #dukeBarman

Exploiting memory corruption vulnerabilities on Android https://blog.oversecured.com/Exploiting-memory-corruption-vulnerabilities-on-Android/ #android #exploitation #dukeBarman

Heappy is an editor based on gdb/gef that helps you to handle the heap during your exploitation development.
The project should be considered a didactic tool useful to understand the evolution of the heap during the process life cycle.

https://github.com/gand3lf/heappy

#reverse #expdev #tools #heap #debug

Zero Day Initiative — CVE-2021-26900: Privilege Escalation Via a Use After Free Vulnerability In win32k https://www.zerodayinitiative.com/blog/2021/5/3/cve-2021-26900-privilege-escalation-via-a-use-after-free-vulnerability-in-win32k #exploitation #windows #dukeBarman

This proof-of-concept demonstrates a trivial no-bug, by-design virtual machine guest-to-host escape with full arbitrary code execution on the current version of Parallels Desktop for Mac https://github.com/badd1e/Proof-of-Concept/tree/main/prl_not0day #exploitation #macOS #dukeBarman

iOS Hacking videos by HackerOne:

- Application Basics https://www.youtube.com/watch?v=VQTQ0VaIXF0
- Filesystem Basics https://www.youtube.com/watch?v=voYFTRoH4CU
- Inter-App Communication https://www.youtube.com/watch?v=zld8VuihCCQ

#reverse #iOS #dukeBarman

IDA 7.6 sp1 was released https://www.hex-rays.com/products/ida/news/7_6sp1/ #reverse #ida