d3fp4r4m's Avatar

d3fp4r4m

@defparam.bsky.social

Security Researcher @defparam@infosec.exchange

189 Followers  |  147 Following  |  12 Posts  |  Joined: 19.08.2023  |  1.7478

Latest posts by defparam.bsky.social on Bluesky

Adafruit FT232H breakout FTW!

17.04.2025 16:03 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

lmao, could you imagine the NSA rm-rf-ing *privilege* from all systems without context

10.02.2025 19:49 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

There were all kinds of failed theories about the Internet magically defeating authoritarian censorship regimes, which the PRC has readily proven wrong, but staying competitive in the AI space (especially in English) while also controlling access to information might actually be even harder.

27.01.2025 05:03 β€” πŸ‘ 20    πŸ” 3    πŸ’¬ 1    πŸ“Œ 0

Run towards fires, not away. That will get you expert status in no time

26.01.2025 17:47 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

happy new year πŸŽ‰

to continue the tradition, here is some of my favorite firmware & embedded security research of 2024:

Defeating the new Raspberry Pi's RP2350 Security Features [1]

Reversing and Hacking Firmware of an in-orbit Satellite to Re-establish Lost Communication [2]

01.01.2025 12:13 β€” πŸ‘ 10    πŸ” 6    πŸ’¬ 2    πŸ“Œ 0
Post image

All videos from The 38th Chaos Communication Congress (38C3) 2024:

media.ccc.de/b/congress/2...

#cybersecurity #informationsecurity #hacking #exploitation #iOS #android #apple #exploitation #reverseengineering #vulnerability

31.12.2024 17:42 β€” πŸ‘ 32    πŸ” 17    πŸ’¬ 0    πŸ“Œ 1

I seriously considered trying TypescriptToLua to help with those shortcomings but switched projects before trying it.

30.12.2024 14:17 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

LUA has to be the easiest in actual embedding and bridging. However, It’s syntax and type management starts to get annoying for me with anything past simple scripts.

30.12.2024 14:12 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Author couldn't be bothered to write that one unit test that mattered

30.12.2024 05:04 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

It's truly amazing we've reached the level of cybersecurity where China has hacked so many US telecom companies that the US government is now recommending the general public uses end-to-end encrypted messaging (something they spent the last 10+ years trying to ban "because terrorism").

19.12.2024 00:04 β€” πŸ‘ 475    πŸ” 115    πŸ’¬ 11    πŸ“Œ 3
Advent of Code 2024

This was my tenth(!) year building 25 days of puzzles for #AdventOfCode. You can solve them all for free! Most people write code to solve them, but you can solve them however you like. I hope they help people become better programmers. 🌟

The first puzzle comes out in two hours: adventofcode.com

01.12.2024 02:57 β€” πŸ‘ 1140    πŸ” 209    πŸ’¬ 62    πŸ“Œ 22

Advent of Code is a great way to get your cranial juices flowing... Ok, that sounds gross, sorry.

I love it as a vehicle to play with a new programming language or two, or dust the cobwebs off an old one. I solved the first day's challenge with PHP!

01.12.2024 12:35 β€” πŸ‘ 16    πŸ” 1    πŸ’¬ 4    πŸ“Œ 0

Ty

30.11.2024 15:10 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

nope, just a preference

25.11.2024 03:00 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I made the jump to kubuntu 24.04 as my host OS. It's the year of linux on the desktop for me. My windows workflows have been placed in a VM where they belong.

25.11.2024 02:52 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Reverse Engineering iOS 18 Inactivity Reboot Wireless and firmware hacking, PhD life, Technology

How does the new iOS inactivity reboot work? What does it protect from?

I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.

naehrdine.blogspot.com/2024/11/reve...

17.11.2024 21:42 β€” πŸ‘ 282    πŸ” 107    πŸ’¬ 12    πŸ“Œ 11
Preview
A collection of weggli patterns for C/C++ vulnerability research - hn security β€œNo one cares about the old […]

I'm sure you're already aware of this resource, but in case others aren't, Marco Ivaldi released some nice weggli rules and wrote a blog showing some vulnerabilities he found with them.
github.com/0xdea/weggli...
security.humanativaspa.it/a-collection...

13.11.2024 05:18 β€” πŸ‘ 6    πŸ” 5    πŸ’¬ 1    πŸ“Œ 0

I think I have at least 5 projects in a pending state since 2018, the good news is that I do increment on them a little each year.

12.11.2024 03:09 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Bluehat talks are up www.youtube.com/playlist?lis...

11.11.2024 20:24 β€” πŸ‘ 14    πŸ” 13    πŸ’¬ 1    πŸ“Œ 0
BlueHat 2024: S10: How Microsoft is Scaling DAST
YouTube video by Microsoft Security Response Center (MSRC) BlueHat 2024: S10: How Microsoft is Scaling DAST

Jason Geffner on scaling DAST
youtu.be/kfuOzDwv874

12.11.2024 02:44 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I'm here! thanks for the invite @wblummis.bsky.social :)

19.08.2023 03:11 β€” πŸ‘ 10    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

@defparam is following 20 prominent accounts