Nicola @xoreax - Bluesky Profile

Latest posts by xoreax.bsky.social on Bluesky

Porting a Windows Kernel data-only exploit technique to 24H2 How we got a paged-pool exploit technique working under Windows 11 24H2

As promised here is the blogpost describing the exploit technique used in our blackhat asia talk: blog.vmcall.io/blog/2025-04...

11.04.2025 06:56 — 👍 0 🔁 0 💬 0 📌 0

Corrected screenshot from my blackhat presentation, on how to calculate privileges for the arbitrary increment

I am currently finalizing my blogpost about the exploit technique used in my #bhasia presentation: (Mis)adventures with Copilot+: Attacking and Exploiting Windows NPU Drivers. I just realized on page 86 of my presentation there is a wrong calculation. Sorry about that! Here is the corrected version

10.04.2025 04:02 — 👍 0 🔁 0 💬 0 📌 0

@xoreax is following 20 prominent accounts

Pwnallthethings
@pwnallthethings

Just thinking out loud.

crazy hugsy
@blah.cat

Someone who likes debuggers a bit too much 🇨🇦 • 🇰🇷 • 🇫🇷

OpenSecurityTraining2
@opensectraining

501(c)(3) Nonprofit providing Open Source and Open Access computer security training material. #OST2 re-launched July 2021!

DIMVA Conference
@dimvaconf

The 22nd Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA '25) ✨July 9 to 11, 2025 ✨in Graz, AUSTRIA 🇦🇹

Kevin Beaumont
@doublepulsar.com

cybersecurity weather man. scanning the horizons for cloudy cyber. Expert at nothing except computer rubbish. Anti-ransomware since 2015.

The C Programming Language
@c-official

Official account of the C Programming Language, invented by Immanuel Kant in 1799 at Bell Labs Königsberg

Viking
@vikingfr

https://v1k1ngfr.github.io/

Randall Munroe
@xkcd.com

vx-underground (automated mirror)
@vxundergroundre

The largest collection of malware source code, samples, and papers on the internet. Password: infected (unofficial, this is a bot! Maintained by @yjb.bsky.social, the bot can't handle retweets, video, and maybe a few other things)

cts
@gf256

Hacker and meme enjoyer

Black Hat
@blackhatevents

The world's premier Technical Cybersecurity Conference Series

Gynvael Coldwind
@gynvael

Security researcher/programmer ⁂ Managing director @ HexArcana ⁂ @DragonSectorCTF founder ⁂ he/him

lcamtuf
@lcamtuf.coredump.cx

Substack: http://lcamtuf.substack.com/archive Homepage: http://lcamtuf.coredump.cx

Alexandre Becholey
@0xabe

Security Researcher, SANS Instructor and Author

harmj0y
@harmj0y

Researcher @SpecterOps. Coding towards chaotic good while living on the decision boundary. #dontbanequality

Jordan Wiens
@psifertex

Binary Ninja dev, Cuber, EUC rider.

Binary Ninja
@binary.ninja

https://binary.ninja/ Made with ❤️ by https://vector35.com/

Yarden Shafir
@yardenshafir

A circus artist with a visual studio license

Justin Elze
@hackinglz.hackpwn.net

CTO @TrustedSec.com | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars

Alex Ionescu
@ionescu

Windows Internals Author, Developer, Reverse Engineer, Security Researcher, Speaker, Trainer, and most recently Nation State Hacker. Core OS Platform Developer at Apple, Hyper-V Vendor at Microsoft, Chief Architect at CrowdStrike and now Director at CSE.