"Dad, what was it like playing CTFs before AI?"

defcon? what is that? i am at dubrovnik

We had a blast this weekend at @offensive_con 🔥- thank you to @Binary_Gecko for the awesome conference! Congrats to our teammates @caueobici for his pwn2own success and @ryaagard for his talk on a 1-click Minecraft 0day😎

Security researchers become trapped into an identity that they can’t escape, life seems purposeless, reality shifts and they realize they can’t bend like a tree in the wind. It turns out that intelligence isn’t the key to happiness. For those that know. Chop wood, carry water.

👀

Lmfao

There's few people that are more OG than @mdowd.

this year's pwn2own isn't just interesting because there will be lots of entries with AI human. it is also interesting because a) anthropic burned a ton of tokens on firefox, basically running claude in a loop until it found something for a month, probably exhausting whatever claude can one shot. b) if someone submits full chain without much use of ai, it tells you one shotting plateaus and these models are bit like fuzzers than seasoned security reseachers. c) even if they used an llm to find the bug, this tells us scaffolding/harnesss design, prompting, and the operator matters a lot.

bet p2o collisions this year will be wild

The way I look at it is: 1. Short term: as a VR expert you can understand model capabilities better than the labs themselves with a 'reasonable' spend. That's fun. 2. Medium term: you *will* have an edge vs teams spending huge amounts. You just need to find it. That's also fun.

Our @hexacon_fr talk is out on Youtube now😎 youtu.be/C-52Gwmce3w Follow the slides at: storage.googleapis.com/stati…

Our research team achieved client RCE on Minecraft Bedrock Edition via a heap overflow to bypass ASLR and sidestep CFG. Writeup to come.

at a conference where you don’t have to present

We at CoR ( @u1f383) had a great experience at @hexacon_fr this weekend Met many skilled VR people, the venue was amazing, and the speaker gifts were simply🔥 Best offensive security conference we have seen so far - thanks again to the organizers for the opportunity!

📢 An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations by William Liu & Savino Dicanosa

Say hello to Eternal Tux🐧, a 0-click RCE exploit against the Linux kernel from KSMBD N-Days (CVE-2023-52440 & CVE-2023-4130) willsroot.io/2025/09/ksmbd-0… Cheers to @u1f383 for finding these CVEs the OffensiveCon talk from gteissier & @laomaiweng for inspiration!

Hey, for anyone who wanted to see this slide deck, it was a keynote about the 0day market, but it commented on public research vs saleable products. I have put it here: github.com/mdowd79/presentat… // cc @chompie1337 @bsdaemon

Our CVE-2024-50264 with @_qwerty_po has won the Best Privilege Escalation category at the 2025 Pwnie Awards. Thank you, @PwnieAwards!!