The House of Rust is a heap exploitation technique that drops a shell against full PIE binaries that don’t leak any addresses.

How to systematically secure anything: a repository about security engineering - veeral-patel/how-to-secure-anything

Documentation and code for rooting and extending a Bosch car head unit (lcn2kai) - ea/bosch_headunit_root

Multiple vulnerabilities were found in the OneDev project ranging from pre-auth Remote Code Execution (RCE) to Arbitrary File Read/Write

  by Mitja Kolsek, the 0patch Team   [Update 2/9/2021: February 2021 Windows Updates included an official fix for this vulnerability and ass...

Posted By Samuel Groß, Project Zero On December 20, Citizenlab published “ The Great iPwn ”, detailing how “Journalists [were] Hacked ...

BlackArrow is the offensive and defensive security services division of Tarlogic Security. A team of high level professionals

Beneath the surface, the modern web is made possible only through a growing labryinth of technology standards. Standards are designed to govern the interoper...

After getting a crash such that rbx was mangled... I spent the weekend adjusting and tweaking the malicious inputs to get it to work. It was honestly just trial n error so nothing clever on my part...

Late last year, I was invited to Facebook’s Bountycon event, which is an invitation-only application security conference with a live-hacking segment. Although participants could submit vulnerabilities for any Facebook asset, Facebook invited us to focus on…

To begin,this is a vulnerability that I found during a bug bounty engagement.I would split this into two parts, or two separate…

Overview RFCs have played a pivotal role in helping to formalise ideas and requirements for much of the Internet’s design and engineering. They have facilitated peer review amongst engineers,…

In this post, I dissect a common misconception about the SameSite cookie attribute and I explore its potential impact on Web security.
TL;DR ¶ The SameSite cookie attribute is not well understood. Conflating site and origin is a common but harmful mistake.…

It's 2020. Quarantines are everywhere – and here I'm writing about one, too. But this quarantine is of a different kind. In this article I'll describe the Linux Kernel Heap Quarantine that I developed for mitigating kernel use-after-free exploitation.