Security nerd and owner of ZX Security, Kiwicon/Kawaiicon organiser, OSINT, Datsun 120Y. He/him
Joined November 2008
- Tweets 4,704
- Following 1,873
- Followers 3,331
- Likes 11,719
741 Photos and videos
Are you ready for Chcon 2024 conference tickets yet?
Conference only.
events.humanitix.com/christcโฆ
Or maybe you want some training?
events.humanitix.com/christcโฆ
9
12
1,831
bogan retweeted
8 Jul 2024
bracing yourself to stab the straw into the bubble tea lid, you pause, catching yourself. do we always have to fight? you gently peel off the lid and let your straw float among the jelly. the inside of the lid reads "submit a talk to purplecon" ๐
13
19
2,411
We found a Remote Code Execution (RCE) vulnerability in @Ollama - one of the most popular AI inference projects on GitHub. Here is everything you need to know about #Probllama (CVE-2024-37032) ๐งต๐
24
335
1,598
312,416
I am currently looking for a new team or individual who is interested in leading this dream once again. If anyone knows any young talented players, especially those in Malaysia, please inform me. It may take some time to rebuild, but I promise to make it successful. InshaAllah.
8 Jun 2024
Trust may be fragile, but we remain steadfast in our belief in its value as we strive to enhance our community and society.
In planning: New ๐ฒ๐พ CTF union. Godspeed.
21
38
4,550
bogan retweeted
23 May 2024
๐๐๐๐๐๐๐๐๐๐๐
8th november 2024
purplecon.org
๐๐๐๐๐๐๐๐๐๐๐
4
24
47
6,722
bogan retweeted
11 May 2024
It's offical! @BSidesMelbourne 2024 dates have now been locked in.
๐ Save the dates into your calendar ๐
Training: 15 Nov, 2024
Conference: 16-17 Nov, 2024
Call for Training and Call for Papers will be opening soon.
Sponsorship packages will announced in the coming week.
5
15
28
7,447
bogan retweeted
10 May 2024
I just finished recording my talk for #NahamCon2024. If you're frustrated with WAFs, definitely check it out on May 24th. I'm looking forward to any feedback from the community. This presentation aims to be very practical for the bug bounty community.
4
13
228
13,439
bogan retweeted
12 Apr 2024
You can read the details of our investigation concerning the CVE-2024-3400 on our blog post: volexity.com/blog/2024/04/12โฆ. It covers the backdoor (UPSTYLE) and also the post exploitation. #PaloAlto 1/4
2
39
97
15,566
bogan retweeted
2 Apr 2024
Releasing, the physsec-methdology, a public, Open Source, unlicensed methodology for Physical Security Testing.
github.com/evildaemond/physsโฆ
Thanks to @InfoSecFriends for helping review and get this off the ground
1
11
26
3,266
The time has come! The call for papers and training are open for Chcon 2024.
pretalx.com/chcon-2024/cfp
We alsof need sponsors! We can not put on the con without some key elements, speakers, sponsors and attendees.
If you are someone you know is able to sponsor e-mail us!
9
10
1,837
Plans to literally "hack the planet" foiled due to 500ms of latency that Andres instinctually investigated.
The latency was due how the malicious code parsed symbol tables in memory.
openwall.com/lists/oss-securโฆ
36
684
6,258
2,523,999
This white paper has one of the best illustrative images Iโve seen in a long time
12 Mar 2024
Jailbreaking LLMs with ASCII Art dlvr.it/T3yLsJ
4
514
bogan retweeted
11 Mar 2024
Robots Dream of Root Shells -- can AI be used to automatically discover security vulnerabilities? blog.isosceles.com/robots-drโฆ
5
45
148
53,792
bogan retweeted
5 Mar 2024
I just released a new blog post about dumping LSASS in Rust! I'm working on a series which will build up to bypassing AVs and EDRs on Windows 11. This is the first post in that series, which kicks off with the classic MiniDumpWriteDump
blog.tomais.nz/a-bit-rusty-lโฆ
7
13
791
๐ฏ
5 Jan 2024
If you're starting in pentest/offensive security and want to secure your first job, learning "web" is probably a better pick than "internal testing" (Windows/AD...) as most of the workload is still "web"
1
777