219 Photos and videos
書きました
12 Nov 2024
6
32
10,392
If I hadn't gone out yesterday, this wouldn't have been a duplicate discover 😭
github.com/q1uf3ng/Dirty-Mer…
3
12
95
9,313
FAMASoon retweeted
May 14
That's my chain — a full chain w/ logic bugs only! No memory corruption, no AI, and of course no collisions at all 😉
Confirmed! Orange Tsai (@orange_8361) of DEVCORE Research Team (@d3vc0r3) chained 4 logic bugs to achieve a sandbox escape on Microsoft Edge, earning $175,000 and 17.5 Master of Pwn points. Full win! #Pwn2Own #P2OBerlin
112
366
2,566
211,884
FAMASoon retweeted
May 15
The blog post on my talk "Design-Based Vulnerabilities on macOS: Oops, Not a One-Shot Fix" presented at OffensiveCon2026 : imlzq.com/apple/macos/2026/0…
4
32
127
11,400
this is a dirtyfrag variant. PoC and patch: github.com/v12-security/pocs…
2
37
202
27,969
FAMASoon retweeted
May 13
最近、AI SOCの話がよくでるんだけど、とりあえずログ突っ込めばなんとかなく、ではないのよ…何度もいうが、正規化、正規化。Sigma使おうと正規化
1
5
35
6,667
FAMASoon retweeted
May 12
Researcher @olearysec found privilege-escalation vuln in Azure Backup for AKS and reported to @microsoft. CERT validated it but Microsoft rejected it and asked Mitre not to give it CVE. Then he says Microsoft silently patched it without telling users olearysec.com/research/azure…
7
41
119
13,746
FAMASoon retweeted
May 12
Yippie
Two new Microsoft Windows 0days. The exploits have cool and badass mysterious names to be extra spoopy
- GreenPlasma: Windows CTFMON Arbitrary Section Creation Elevation of Privileges Vulnerability
- YellowKey: Bitlocker Bypass Vulnerability
github.com/Nightmare-Eclipse
30
231
1,890
152,363
FAMASoon retweeted
May 11
We’ve been through all kinds of situations: exploits failing, vendors turning off services during demos, patches being released the night before a demo, and more but we happily accepted and continue to play.
And if you don’t participate in the game, who cares about your opinion?
5
35
4,238
FAMASoon retweeted
May 11
As a team that has participated in Pwn2Own twice every year since 2020, We’d like to say this clearly: getting rejected is just another part of the game. Calling player to "revenge” and releasing 0-day exploits is irresponsible and harmful.
4
13
124
11,486
FAMASoon retweeted
Beatrice Pro Edition has been updated!
-New flag to obfuscate Import Address Table
-Improved alternative encodings
-Evasion with Cobalt Strike added to the guide
Check out Beatrice Pro edition:
buymeacoffee.com/lainkusanag…
6
31
1,917
FAMASoon retweeted
May 9
It’s been 10 years since I published my first book(LTR101), so to celebrate I’m giving 10% off my red team course, Malwareless Adversarial Emulation (MAE).
MAE focuses on practical, real-world offensive tradecraft including malwareless operations, tunnelling, AD CS abuse, cloud pivoting, and detection-aware operations.
Check it out here: lms.zsec.red
Discount code: LTR101-10Y
Valid until the end of August 2026.
Thanks to everyone who has supported my work over the years. I genuinely appreciate it.
#RedTeam #CyberSecurity #InfoSec #OffensiveSecurity #AdversaryEmulation #RedTeaming #CyberTraining #Malwareless
1
22
90
7,874
FAMASoon retweeted
May 8
This was supposed to be my PoC for a Claude Code RCE aimed at Pwn2Own Berlin 2026, but ZDI never got back to me about my entry registration. It looks like I won't be able to register it at all...
15
31
324
27,604
FAMASoon retweeted
When practicing on a VM crackme recently, I created a devirtualizer which lifts the virtual machine to LLVM to defeat the protection. LLVM-based devirtualisation is a lot of fun and I wrote down my experience and lessons learned on my blog:
eversinc33.com/2026/05/07/ll…
18
103
505
36,925
EDR Tradecraft: Internals, Detection, Evasion & Advanced Research
TL;DR: Covers kernel callback APIs, file-system mini-filters, ETW providers, four detection engine model, syscall gates sleep obfuscation, call stack spoofing, ETW-TI HWD and more ....
0xdbgman.github.io/posts/edr…
1
57
221
10,147