Forwarded from ๅฉro ็ชCracker
๐ฅArm Mali: insufficient cache invalidation for non-page-aligned user buffer imports
When a user buffer is imported into Mali and mapped into the GPU, Mali calls
However, when a user buffer is imported that does not begin/end at page boundaries, Mali still installs PTEs on the CPU and GPU that map the entire page, but only calls
Therefore, when the GPU is not cache-coherent (which Jahn think means there's no ACE or ACE-Lite) or when Mali creates uncached CPU-side mappings, malicious code can read stale memory contents. This is a problem if the last cache writeback happened before the kernel's page allocator zeroed the page and handed it to userspace, since that means the stale data we're reading is whatever the previous user of the page wrote into it.
When a user buffer is imported into Mali and mapped into the GPU, Mali calls
dma_map_page(). This implicitly does a dcache_clean_poc() on the mapped range (unless the kernel knows that the device is DMA-coherent) to ensure that dirty cache state is written back to main memory before the user buffer can be accessed by the GPU and possibly also uncached mappings on the CPU.However, when a user buffer is imported that does not begin/end at page boundaries, Mali still installs PTEs on the CPU and GPU that map the entire page, but only calls
dma_map_page() on the user-specified range. This means that the rest of the page is mapped without any cache maintenance.Therefore, when the GPU is not cache-coherent (which Jahn think means there's no ACE or ACE-Lite) or when Mali creates uncached CPU-side mappings, malicious code can read stale memory contents. This is a problem if the last cache writeback happened before the kernel's page allocator zeroed the page and handed it to userspace, since that means the stale data we're reading is whatever the previous user of the page wrote into it.
Forwarded from ๅฉro ็ชCracker
mali-coherent-test.c
8.8 KB
๐ฅReproducer just uses the uncached CPU-side mapping(example run):
aarch64-linux-gnu-gcc -static -o mali-coherent-test mali-coherent-test.c && adb push mali-coherent-test /data/local/tmp/ && adb shell /data/local/tmp/mali-coherent-test๐When an evil hurts...๐
๐๐๐๐๐๐๐๐๐๐
List of Pakistani Websites:-
https://bookme.pk/
https://check-host.net/check-report/ec992eek303
๐๐๐๐๐๐๐๐๐๐
https://www.nts.org.pk/
https://check-host.net/check-report/ec9950ak6d8
๐๐๐๐๐๐๐๐๐๐
https://www.sastaticket.pk/
https://check-host.net/check-report/ec9963ckd1d
๐๐๐๐๐๐๐๐๐๐
https://digiskills.pk/
https://check-host.net/check-report/ec9972ak405
๐๐๐๐๐๐๐๐๐๐
https://www.piac.com.pk/
https://check-host.net/check-report/ec99930k475
๐๐๐๐๐๐๐๐๐๐
https://laam.pk
https://check-host.net/check-report/ec99a2fk8d7
๐๐๐๐๐๐๐๐๐๐
https://www.pcb.com.pk
https://check-host.net/check-report/ec99d2fk1e9
๐๐๐๐๐๐๐๐๐๐
https://www.pktrucks.com
https://check-host.net/check-report/ec99f4fk8df
๐๐๐๐๐๐๐๐๐๐
https://priceoye.pk/
https://check-host.net/check-report/ec9a387k6fc
๐๐๐๐๐๐๐๐๐๐
https://www.clicky.pk/
https://check-host.net/check-report/ec9a416kdba
๐๐๐๐๐๐๐๐๐๐
https://www.pk-ent.com/
https://check-host.net/check-report/ec9a4f8kcea
๐๐๐๐๐๐๐๐๐๐
๐For Support, Do Share As Much As Possible ๐
https://t.me/DDoS_Evil
DDoS Done of Targetted Country
๐๐๐๐๐๐๐๐๐๐
List of Pakistani Websites:-
https://bookme.pk/
https://check-host.net/check-report/ec992eek303
๐๐๐๐๐๐๐๐๐๐
https://www.nts.org.pk/
https://check-host.net/check-report/ec9950ak6d8
๐๐๐๐๐๐๐๐๐๐
https://www.sastaticket.pk/
https://check-host.net/check-report/ec9963ckd1d
๐๐๐๐๐๐๐๐๐๐
https://digiskills.pk/
https://check-host.net/check-report/ec9972ak405
๐๐๐๐๐๐๐๐๐๐
https://www.piac.com.pk/
https://check-host.net/check-report/ec99930k475
๐๐๐๐๐๐๐๐๐๐
https://laam.pk
https://check-host.net/check-report/ec99a2fk8d7
๐๐๐๐๐๐๐๐๐๐
https://www.pcb.com.pk
https://check-host.net/check-report/ec99d2fk1e9
๐๐๐๐๐๐๐๐๐๐
https://www.pktrucks.com
https://check-host.net/check-report/ec99f4fk8df
๐๐๐๐๐๐๐๐๐๐
https://priceoye.pk/
https://check-host.net/check-report/ec9a387k6fc
๐๐๐๐๐๐๐๐๐๐
https://www.clicky.pk/
https://check-host.net/check-report/ec9a416kdba
๐๐๐๐๐๐๐๐๐๐
https://www.pk-ent.com/
https://check-host.net/check-report/ec9a4f8kcea
๐๐๐๐๐๐๐๐๐๐
๐For Support, Do Share As Much As Possible ๐
https://t.me/DDoS_Evil
Bookme.pk
Bookme - Pakistan's #1 E-Ticketing Platform
Pakistan's leading online ticket booking platform. Buy E-tickets for bus, flight, movie, events & book hotels at lowest fares across the globe.
โคโ๐ฅ7
Hello Guys,
I am making an Private Page on start.me regarding OSINT
So if anyone wants to contribute or help me to make this project successful will be highly appreciated
if you are interested please contact me at https://t.me/hacklathon
also if you want to be in my team please let me know.
I am making an Private Page on start.me regarding OSINT
So if anyone wants to contribute or help me to make this project successful will be highly appreciated
if you are interested please contact me at https://t.me/hacklathon
also if you want to be in my team please let me know.
Telegram
Swayam sopnic nayak
Co-Founder of @osintambition
๐4
Forwarded from ะ ะฃะกะกะะะฏ ะะขะะฆะ
This media is not supported in your browser
VIEW IN TELEGRAM
ะจะปะฐ ะฒัะพะดะต ะฒัะพัะฐั ะฝะตะดะตะปั, ั ัะถะต ัะฑะธะปัั ัะพ ััะตัะฐ. ะะฐะบะธััะฐะฝั ะฒัะต ัะฐะบ ะถะต ะฟะพั
ัะน.
๐4๐ซก2๐1
๐ฅAPT38 Tactic PoC for Stealing 0-days
๐พprogram based on APT38 North Korea-backed hackers tactic that used in targeting security researchers using a malicious Visual Studio project file (vcxproj) to steal their 0days.
๐พOnce the program runs, it will infect all of your Visual Studio projects
Download:- https://system32.ink/news-feed/p/259/
๐พprogram based on APT38 North Korea-backed hackers tactic that used in targeting security researchers using a malicious Visual Studio project file (vcxproj) to steal their 0days.
๐พOnce the program runs, it will infect all of your Visual Studio projects
Download:- https://system32.ink/news-feed/p/259/
๐3
A blog to learn how to do password cracking using John the ripper
Password cracking with John the ripper tool
Here is the link to the blog:
https://techofide.com/blogs/how-to-use-john-the-ripper-john-the-ripper-password-cracker-techofide/
Join our group for Exclusive Cyber security content
t.me/ethicalhackingtechofide
Password cracking with John the ripper tool
Here is the link to the blog:
https://techofide.com/blogs/how-to-use-john-the-ripper-john-the-ripper-password-cracker-techofide/
Join our group for Exclusive Cyber security content
t.me/ethicalhackingtechofide
๐1
Forwarded from ๅฉro ็ชCracker
๐ฒssl-kill-switch3 is a next-generation of iOS Tweak SSLKillSwitch(2) with much more functionality!
Forwarded from ๐DDoS Evil๐
This media is not supported in your browser
VIEW IN TELEGRAM
Dreamstime.com
๐DDoS Done๐
After Bypassing CloudFlare ๐
https://check-host.net/check-report/ed5664dk4da
Do Share And Support๐
๐Evils Always Remains Evil๐
https://t.me/DDoS_Evil
๐DDoS Done๐
After Bypassing CloudFlare ๐
https://check-host.net/check-report/ed5664dk4da
Do Share And Support๐
๐Evils Always Remains Evil๐
https://t.me/DDoS_Evil
โคโ๐ฅ3
Best Web Crawling :
https://www.cyotek.com/cyotek-webcopy
http://www.octoparse.com/
https://www.httrack.com/
https://chrome.google.com/webstore/detail/scraper/mbigbapnjcgaffohmbkdlecaccepngjd
https://addons.mozilla.org/en-US/firefox/addon/outwit-hub/
http://visualscraper.blogspot.hk/
https://www.parsehub.com/
https://scrapinghub.com/
https://webhose.io/
https://dexi.io/
https://www.import.io/
https://www.spinn3r.com/
https://www.cyotek.com/cyotek-webcopy
http://www.octoparse.com/
https://www.httrack.com/
https://chrome.google.com/webstore/detail/scraper/mbigbapnjcgaffohmbkdlecaccepngjd
https://addons.mozilla.org/en-US/firefox/addon/outwit-hub/
http://visualscraper.blogspot.hk/
https://www.parsehub.com/
https://scrapinghub.com/
https://webhose.io/
https://dexi.io/
https://www.import.io/
https://www.spinn3r.com/
Cyotek
Cyotek WebCopy - Copy websites locally for offline browsing โข Cyotek
Cyotek WebCopy is a free tool for automatically downloading the content of a website onto your local device.
WebCopy will scan the specified website and download its content. Links to resources such as style-sheets, images, and other pages in the websiteโฆ
WebCopy will scan the specified website and download its content. Links to resources such as style-sheets, images, and other pages in the websiteโฆ
โค1
~ OSCP Resouces โต๐
All Networking Services & Ports Enumeration
https://bugbountyguide.org/2022/12/24/all-network-services-ports-enumeration/
All Networking Services & Ports Enumeration
https://bugbountyguide.org/2022/12/24/all-network-services-ports-enumeration/
๐3
Forwarded from ๐๐๐๐๐๐ ๐๐๐๐๐ ๐
๐๐๐๐ (ใ
คใ
คใ
คใ
คใ
คใ
ค ใ
คใ
คใ
คใ
คใ
คใ
ค)
https://check-host.net/check-report/ed8bb70kf5f
https://check-host.net/check-report/ed8bcf3k8d6
https://islamabadtrafficpolice.gov.pk/ This Site Is Permanently Gone ๐๐
https://joinpakarmy.gov.pk/
2 sites went offline.. expect more attacks from PH and IND
#fakpakpakpak #fckistan
https://check-host.net/check-report/ed8bcf3k8d6
https://islamabadtrafficpolice.gov.pk/ This Site Is Permanently Gone ๐๐
https://joinpakarmy.gov.pk/
2 sites went offline.. expect more attacks from PH and IND
#fakpakpakpak #fckistan
โคโ๐ฅ2
Forwarded from ๐๐๐๐๐๐ ๐๐๐๐๐ ๐
๐๐๐๐ (.)
Hacked By ICP
https://armydogcenterpakistan.pk/
๐
Pakistan=Fuckistan
#INDIAN_CYBER_FORCE
#INDIAN_CYBER_PUNKS
https://armydogcenterpakistan.pk/
๐
Pakistan=Fuckistan
#INDIAN_CYBER_FORCE
#INDIAN_CYBER_PUNKS