0xAb's Avatar

0xAb

@0xab.bsky.social

Malware researcher, also interested in Mobile vulnerability research

36 Followers  |  29 Following  |  6 Posts  |  Joined: 17.10.2023  |  1.5146

Latest posts by 0xab.bsky.social on Bluesky

the recording of my talk "Rethinking Emulation for Fu(zzi)n(g) and Profit: Near-Native Rehosting for Embedded ARM Firmware" is online!

I had an absolute blast speaking and being at
@re-verse.io, so many great talks and hallway discussions

13.04.2025 09:07 — 👍 6    🔁 3    💬 0    📌 0
Preview
How does the Linux Kernel start a Process Stack smashing: How Linux creates the stack and runs a program. Then mess with it.

How the linux kernel starts a process

iq.thc.org/how-does-lin...

25.02.2025 20:04 — 👍 2    🔁 0    💬 0    📌 0
Patch-Gapping the Google Container-Optimized OS for $0 Background I’m trying to really focus this year on developing technically in a few ways. Part of that is reviewing kCTF entries. This helps me get a sense of what subsystems are producing the most bug...

Really great read by @h0mbre (on X) about his journey to exploit a Linux n-day on kCTF. Not only the exploit but the process to understand the bug including own failures, e.g. deal with CONFIG_DEBUG_LIST, is full of insights. h0mbre.github.io/Patch_Gappin...

17.02.2025 18:31 — 👍 2    🔁 2    💬 0    📌 0
Preview
TALK: Musing from Decades of Linux Kernel Security Research // Joshua J. Drake The Linux Kernel powers billions of devices across industries, making it critical infrastructure. But is it secure? Josh explores this by comparing its security investments to a typical SDLC, sharing ...

I'm giving a talk at BOOTSTRAP25 in Austin! Hope to see y'all there! ringzer0.training/bootstrap25-...

18.02.2025 19:04 — 👍 11    🔁 4    💬 0    📌 0
Post image

Evil Never Sleeps: When Wireless Malware Stays On After Turning Off iPhones

paper: arxiv.org/pdf/2205.06114
code: github.com/seemoo-lab/i...
github.com/seemoo-lab/f...

07.01.2025 07:35 — 👍 1    🔁 0    💬 0    📌 0

TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution

Code github.com/compsec-snu/...
paper arxiv.org/abs/2406.08719

29.12.2024 22:13 — 👍 0    🔁 0    💬 0    📌 0

Interesting paper by Erin Avllazagaj to automatically find Linux kernel objects being potentially useful for privilege escalation, tool is called SCAVY. www.usenix.org/system/files...

22.11.2024 09:44 — 👍 5    🔁 2    💬 0    📌 0
Preview
Reverse Engineering iOS 18 Inactivity Reboot Wireless and firmware hacking, PhD life, Technology

How does the new iOS inactivity reboot work? What does it protect from?

I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.

naehrdine.blogspot.com/2024/11/reve...

17.11.2024 21:42 — 👍 279    🔁 107    💬 12    📌 11
Preview
Advanced Fuzzing With LibAFL @ Ekoparty 2024 Advanced Fuzzing With LibAFL Dominik Maier Ekoparty 2024-11-15 1

Slides for my @ekoparty talk "Advanced Fuzzing
With LibAFL"
- >
docs.google.com/presentation...

15.11.2024 19:27 — 👍 44    🔁 21    💬 0    📌 1

Amen to that, although its still lacking some of the good material/discussions around reversing and vulnerability research that I used to find on twitter in the past.

15.11.2024 10:39 — 👍 1    🔁 0    💬 0    📌 0
Post image

The cost of a NAND chip off attack is 170.87€

www.errno.fr/NAND_chip_of...

14.11.2024 13:56 — 👍 3    🔁 1    💬 0    📌 0
Post image

code repo: github.com/xairy/lights...
slides: docs.google.com/presentation...

12.11.2024 17:19 — 👍 0    🔁 0    💬 0    📌 0

@0xab is following 20 prominent accounts