Security researcher, hardware crasher and some other useless characteristics in real life.
Joined March 2009
- Tweets 2,935
- Following 776
- Followers 1,609
- Likes 2,836
17 Photos and videos
Sebastian Muniz retweeted
13 Oct 2022
¿Queres aprender sobre hardware hacking? ¿Tu empresa o productos utiliza hardware de terceros y no sabes cómo auditarlos? ¿Tenes dispositivos IoT en tu red y queres hacer un pentest? Anótate en mi training de la @ekoparty y aprende de forma práctica.
ekoparty.org/en_US/eko2022/t…
14
25
Sebastian Muniz retweeted
12 Jul 2022
Este año voy a estar dando un training sobre cómo auditar sistemas embebidos. Podes aprender a auditar desde un wireless router a un aire acondicionado smart de manera práctica.
12 Jul 2022
EKOPARTY TRAININGS 2022 ⚡¡Formate con los mejores referentes de la industria!
📌INTRODUCCIÓN PRÁCTICA A LA AUDITORÍA DE SISTEMAS EMBEBIDOS
by Andrés Blanco (@6e726d)
info en: ekoparty.org/r/raM
Reservá tu lugar➡️ ekoparty.org/r/64N
1
7
24
Danger danger danger 🚨
11 Nov 2021
Ea ! Se hacer la SecurityJam ! 💥🍻🍺
Dentro de poco se abre el Call for Papers! 🚨
📑Como se dijo anteriormente, recuerden que SecurityJam es un lugar de experimentacion y cofradia, y lo vamos a seguir mantieniendo asi.
A me olvidaba 🤔 , que les parece el nuevo logo?
1
2
Sebastian Muniz retweeted
10 Aug 2021
ekoparty CFP is open, this is a great opportunity to share your work with the LATAM community.
What are you waiting for?
10 Aug 2021
I'm looking for recommendations for this years @ekoparty's keynotes.
Tag your favorite speaker below so I can contact them!
RT for reach pl0x 🥺♥️
16
14
Sebastian Muniz retweeted
31 May 2021
We are super excited about releasing this advisory! Hope you enjoy it! ⚔️
Overwolf 1-Click Remote Code Execution (CVE-2021-33501)
Thanks @TheOverwolf for your great work fixing the issue!
swordbytes.com/blog/security…
53
108
Since Cisco PSIRT became unresponsive and the published release 4.22 still doesn't mention any of the vulnerabilities, here are 12 PoCs in 1 gist:
gist.github.com/Frycos/8bf5c…
8
183
325
Sebastian Muniz retweeted
29 Oct 2020
Apple Lightning (cont.) - serial number reading
Explains what happens inside of Serial Number Reader app, why some old SNRs randomly stopped working as actual SNRs and what we can try to do about it
As always, read on your own risk!
nyansatan.github.io/lightnin…
7
18
133
Sebastian Muniz retweeted
13 Oct 2020
The code of PoC avalible on our github page: github.com/chip-red-pill/crb…
1
29
85
Sebastian Muniz retweeted
15 Oct 2020
Today we publish the details of a fault injection vulnerability affecting the MediaTek BootROM. We achieved code execution in the context of the Preloader, fully circumventing secure boot. Unpatchable. There’s a hole in your SoC: research.nccgroup.com/2020/1…
7
152
341
Sebastian Muniz retweeted
7 Oct 2020
Hexrays Toolbox - Find code patterns within the Hexrays AST. Based on IDAPython. github.com/patois/HexraysToo…
22
70
Sebastian Muniz retweeted
6 Oct 2020
MAJOR UPGRADE!
Finally Demigod, a kernel module(.sys .ko .kext)emulator merged into Qiling.
Qiling now able to emulate both kernel module and binary with advanced instrumentation
github.com/qilingframework/q…
Tips: dev branch
Special thanks: @unicorn_engine @tuanit96 @quangnh89
2
46
165
Hyper-V hacking suite for Intel & AMD. Works on every single version of windows 10 (2004-1511). Had fun with this one.
githacks.org/xerox/voyager
8
117
333
Sebastian Muniz retweeted
24 Sep 2020
Here is the writeup for some VMware bugs I found recently (CVE-2020-3989, CVE-2020-3990).
24 Sep 2020
[BLOG] VMware Workstation: Attack surface through Virtual Printer.
In this article, @NcscVietnam will have security researcher @linhlhq share how to find bugs on closed source applications utilizing the fuzzing method.
Details: blog.khonggianmang.vn/vmware…
#Security #fuzzing
1
66
169
Sebastian Muniz retweeted
14 Sep 2020
Enabling Flash Encryption on the ESP32 makes exploiting a Secure Boot bypass more complex.
We leveraged a design weakness in order to inject an arbitrary value in the encrypted data (CVE-2020-15048).
This value is then loaded into PC using an EM glitch!
raelize.com/posts/espressif-…
ALT ESP32 Flash Encryption
ALT Successful glitches!
ALT Attack description using FIRM.
26
52
So yes, Zerologon (CVE-2020-1472) is quite easy to exploit. Unauthenticated user to Domain Admin. This is really scary. Run exploit, DCSync with DC account and empty NT hash: you have Domain Admin and a broken DC.
Awesome find by Tom Tervoort 🙂. Patch patch patch!
21
833
1,728
Sebastian Muniz retweeted
11 Sep 2020
Lucid is a new and interactive IDA plugin that makes it effortless to study the Hex-Rays microcode as it flows through the decompilation pipeline:
BLOG: blog.ret2.io/2020/09/11/luci…
CODE: github.com/gaasedelen/lucid
101
268
Sebastian Muniz retweeted
9 Sep 2020
🥁🥁🥁 We're ready to announce... #Ekoparty 2020 SPEAKERS!! 🔥
⚡️ ekoparty.org/speakers ⚡️
From Russia to Mexico, from France to Argentina, head to our website for the full expert lineup! We're thrilled to have you all at #eko2020 🤩
Full timetable coming soon!
#pwndemic
27
57
Sebastian Muniz retweeted
8 Sep 2020
Project Zero blog: "Attacking the Qualcomm Adreno GPU" -- googleprojectzero.blogspot.c…
2
135
303
Sebastian Muniz retweeted
1 Sep 2020
New blog entry: An Exhaustively-Analyzed IDB for ComRAT V4. This is one of the most thorough analyses I've ever done; certainly the largest. msreverseengineering.com/blo…
16
245
578
Sebastian Muniz retweeted
2 Aug 2020
So last semester I taught a course called "Attacks on Secure Implementations", covering fault attacks, side channel attacks, cache attacks, yada yada. The whole thing is online - videos, scribe notes, student presentations - you can learn from it too! github.com/Yossioren/Attacks…
2
129
333