This content is Available NOW for students in Offensive Mobile Reversing and Exploitation & Offensive iOS Internals.
⚠️ Starting December 2025, content from this module will also be included in our certification exam.
👉 Ready to dive in? Enroll at academy.8ksec.io and get started.
#iOSSecurity #MobileSecurity #PatchDiffing #ReverseEngineering #OffensiveSecurity
1
2
414
27 Jun 2025
رشتو: در این برنامه قراره در خصوص تکنیک #PatchDiffing روی Patchهای #مایکروسافت صحبت و از دو ابزار #Bindiff و #Diaphora استفاده کنن. همچنین نشون میدن که چطوری #هوش_مصنوعی میتونه این فرایند رو ساده تر کنه.
این برنامه ساعت 21:30 شروع میشه.
#AI #PatchTuesday
24 Jun 2025
Join me this Friday at 11AM on the next @offby1security stream where I will diff a Microsoft patch from this year and see how far we get. We'll use tools like BinDiff and Diaphora and look at the process of determining the vulnerability.
youtube.com/watch?v=_ZrHjohj…
1
1
208
14 May 2025
Hot of the #ghidriff #patchdiffing press for May 2025 we have CVE-2025-32701 clfs.sys #exploitedinwild🔥
2 functions modified with relevant changes 🧐
A new flag restricting an IoCreateFileEx call, impacting object ref/deref behavior #UAF 🤔👀
1
15
60
4,832
26 Nov 2024
در این ویدیو از @LowLevelTweets آسیب پذیری CVE-2024-11477 در 7zip رو بررسی کردن.
از بررسی کد شروع شده تا #PatchDiffing و #فازینگ و ...
نهایت به چیزی که رسیده: آسیب پذیری قابلیت اکسپلویت شدن رو داره و هکرها در شرایطی میتونن از سیستم قربانی شل بگیرن.
youtube.com/watch?v=i5L9xEk_…
22 Nov 2024
آسیب پذیری با شناسه CVE-2024-11477 در #7zip اصلاح شده که امکان اجرای کد دلخواه رو به مهاجم میده.
آسیبپذیری در Zstandard Decompression و از نوعinteger underflowهستش.
نسخه اصلاح شده : 24.07 به بالا
توسط ترندمیکرو و در 23 خرداد گزارش شده.
آسیب پذیری از چند جهت میتونه مهم باشه:
1
3
262
21 Oct 2024
Exploiting Microsoft Kernel Applocker Driver (CVE-2024-38041) #MicrosoftKernelCVE #CyberSecurityServices #PatchDiffing #ExploitationProcess #RootCauseAnalysis csa.limited/blog/20240916-Ex…
16
50
3,547
2 Oct 2024
CVE-2024-22263: Spring Cloud Dataflow Arbitrary File Writing #SpringCloudDataflow #ArbitraryFileWriting #PatchDiffing #StaticAnalysis #LabSetup blog.securelayer7.net/spring…
4
11
1,210
17 Aug 2024
jumping on the CVE-2024-38063 tcpip.sys train...🚂can't resist.. just need to figure out the right packet... 🤓
#patchdiffing #CVE #RE #ghidriff
gist.github.com/clearbluejar…
3
46
156
23,669
10 Apr 2024
Hot of the #ghidriff #patchdiffing press for April 2024 we have CVE-2024-26219 in HTTP.sys 🔥
MSRC just started publishing CWE info! For this CVE we have a "CWE-476: NULL Pointer Dereference" 👀
See if you can find it 🧐
Hint: "UxLastMdlChunkNullFix"
gist.github.com/clearbluejar…
3
14
34
4,871
4 Apr 2024
Join @clearbluejar @1ns0mn1h4ck 2024 for "Patch Different on *OS". Check out this quick talk teaser video for a quick demo of some of the content! #INSO24 #Insomnihack #patchdiffing #apple youtube.com/watch?v=Qd4ScibF…
5
762
20 Mar 2024
🔍✨ #patchdiffinthedark to step into the light. Latest VR/RE course led by @clearbluejar at #BHUSA. Root cause the latest CVEs with Ghidra. 2 offerings Sat/Sun or Mon/Tue. Early bird rates end May 24. #patchdiffing @BlackHatEvents
blackhat.com/us-24/training/…
2
3
7,295
11 Jan 2024
hello 2024!
Hot off the #ghidriff #patchdiffing press we have the January 9, 2024—KB5034122 Windows 10 22H2 x64 kernel update ...
gist.github.com/clearbluejar… 🔥
Side by side view is here: diffpreview.github.io/?0e52d… 👀
This month the kernel fixes include CVE-2024-20698 ... as there are not too many changes, perhaps we find the root cause?
Take at look this function... gist.github.com/clearbluejar… 🧐
Hint: It rhymes with "vintager afterglow".
Also! This diff is testing out an upcoming ghidriff feature.. check out the new callgraph.
gist.github.com/clearbluejar…
7
18
2,958
13 Dec 2023
Hot off the #ghidriff #patchdiffing press, we have the December Windows 11 22H2 x64 kernel security update KB5033375: gist.github.com/clearbluejar… 🧐
Side-by-side view here: diffpreview.github.io/?4f0c9…
ALT Windows 11 22H2 x64 - December 12, 2023 — KB5033375 ghidriff diff
9
35
3,951
16 Nov 2023
Hot off the #ghidriff #patchdiffing press we have November's Windows 11 22H2 x64 kernel update KB5032190:
gist.github.com/clearbluejar… 🧐
Side by side view is here: diffpreview.github.io/?02fc4… 👀
2
8
53
9,561
1 Nov 2023
ghidriff v0.5.1 - usability updates, improved automated testing , and bug fixes 🪲
- github workflows now test a matrix of devcontainers across versions of python, Ghidra, and Java 🔥
github.com/clearbluejar/ghid…
#patchdiffing #ghidra #githubactions
5
28
3,127
20 Oct 2023
Hot off the #ghidriff #patchdiffing press we have October's Windows 11 22H2 kernel Update KB5031354...
gist.github.com/clearbluejar… 👀
8
26
4,575
10 Oct 2023
2
116
410
49,822
11 Jun 2023
I did some patchdiffing over the new #Fortinet bug, looks like it's the real deal, it's a nasty bug! Update your #fortigate before the bug goes public in a few days!
2
12
37
15,383
3 Jun 2023
Just about finished with slides for my #patchdiffing workshop @reconmtl... Join me on Friday or Saturday to learn how to "Patch Diff In The Dark" #REcon2023
cfp.recon.cx/2023/talk/AC9CZ…
1
3
316
CVE-2022-34718 patch diffing, root cause analysis and exploit PoC
Writeup by @chompie1337
securityintelligence.com/pos…
#windows #patchdiffing #infosec #cybersecurity
2
47
159
16,694
