Joined December 2018
- Tweets 20
- Following 245
- Followers 277
- Likes 55
Photos and videos
GongXiling retweeted
6 May 2021
In our recent project we took a deep dive in Qualcomm's MSM data services and found a vulnerability which affects a wide range of mobile phones.
Read more here:
research.checkpoint.com/2021…
34
61
GongXiling retweeted
6 Aug 2020
Share the white paper and slide of TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices I presented @BlackHatEvents github.com/secmob/TiYunZong-…
5
148
298
1 Aug 2020
Awesome~!
30 Jul 2020
I'm excited to present "Emulating Samsung's Shannon Baseband for Security Testing" at Black Hat USA'20 with @nSinusR ! We'll be presenting our emulator which can boot, snapshot, fuzz, and debug Shannon firmware for vuln research.
blackhat.com/us-20/briefings…
@BlackHatEvents
GongXiling retweeted
12 May 2020
A precipitous cliff of Yinping Mountain in the south of Yinping Township, E China’s Anhui Province, is best known for its limestone caves and stalactites.
18
68
449
Today I'm happy to release new research I've been working on for a while: 0-click RCE via MMS in all modern Samsung phones (released 2015 ), due to numerous bugs in a little-known custom "Qmage" image codec supported by Skia on Samsung devices. Demo: youtube.com/watch?v=nke8Z3G4…
22
712
1,499
GongXiling retweeted
26 Mar 2020
very interesting bugs and feature
26 Mar 2020
Jianjun Dai @Jioun_dai from 360 Alpha Lab took down macOS Bluetooth with a #zeroclick exploit chain (5 bugs in total). Now all the bugs have been patched. Here are the details of two zero-click RCE. blogs.360.cn/post/macOS_Blue…
7
23
GongXiling retweeted
10 Sep 2019
Hyper-V memory internals. Guest OS memory access (English version)
hvinternals.blogspot.com/201…
2
103
275
GongXiling retweeted
4 Sep 2019
Breaking Google Home: Exploit It with SQLite (Magellan)
#MobileSecurity #IoTSecurity
#defcon27 [SLIDES] by @leonwxqian @Xbalien29 @NickyWu_
media.defcon.org/DEF CON%2…
1
34
85
GongXiling retweeted
29 Aug 2019
A very deep dive into iOS Exploit chains found in the wild googleprojectzero.blogspot.c…
1
275
510
GongXiling retweeted
23 Aug 2019
TEE-reversing - a curated list of public TEE resources for learning how to reverse-engineer and achieve trusted code execution on ARM devices
#MobileSecurity #AndroidSecurity by @enovella_
github.com/enovella/TEE-reve…
69
146
GongXiling retweeted
21 Aug 2019
We've finally managed to update our Secure Boot Technical Overview to cover the enhancements from the last couple of years (h/t @NAKsecurity for the excellent initial document). Find this and a whitepaper on secure storage in TrustZone at qualcomm.com/company/product….
2
17
35
GongXiling retweeted
15 Aug 2019
Began curating a list of Hyper-V exploitation resources, hope it can be of use to anyone interested in starting Hyper-V security research: github.com/shogunlab/awesome… #ExploitDev #HyperV
2
122
246
13 Aug 2019
Update the Slides: The vulnerability that allows arbitrary read/write Linux Kernel memory from Modem is CVE-2019-10538, which already fixed in the August Android Security Bulletin
12 Aug 2019
Exploiting Qualcomm WLAN and Modem Over The Air
#MobileSecurity #AndroidSecurity
#BHUSA2019 by @GXiling and @tencent_blade
SLIDES: i.blackhat.com/USA-19/Thursd…
PAPER: i.blackhat.com/USA-19/Thursd…
2
16
41
GongXiling retweeted
4 Jul 2019
The slides for my talk @reconmtl about Hexagon and aDSP are (finally) available at cfp.recon.cx/media/Attacking…
4
29
67
5 Jul 2019
Nice~!
Part of the slides for Recon Montreal 2019 are available embedded in the talks description in the schedules cfp.recon.cx/reconmtl2019/sc…. More slides to come up soon!