Tim Willis (@itswillis) | Aguea

5 Photos and videos

Tweets

Tim Willis retweeted

Samuel Groß @5aelo

12 Aug 2025

Some personal news: I'm thrilled to be moving back to Project Zero! Specifically I'll be joining the Big Sleep project to find vulnerabilities in JavaScript engines. We've already found and reported our first vulnerability in V8 last week: issuetracker.google.com/issu…

6

36

421

34,117

Tim Willis retweeted

Ivan Fratric 💙💛@ifsecure

12 Aug 2025

If you've been keeping track on the Big Sleep bug tracker at goo.gle/bigsleep you might have noticed it lists more bugs now compared to last week. Including a "High impact issue in V8" :)

3

20

101

23,161

Tim Willis @itswillis

8 Aug 2025

That time when @tehjh was just reviewing a new Linux kernel feature, found a security vuln, then went on a journey to see if he could exploit it from inside the Chrome Linux Desktop renderer sandbox (spoiler: very yes) googleprojectzero.blogspot.c…

From Chrome renderer code exec to kernel with MSG_OOB

IntroductionIn early June, I was reviewing a new Linux kernel feature when I learned about the MS...

projectzero.google

48

130

24,120

Tim Willis retweeted

Heather Adkins - Ꜻ - Spes consilium non est

@argvee

29 Jul 2025

Today @Google Project Zero announced a new trial policy: Reporting Transparency. We’ll now share when we report a security vuln to a vendor within 1 week including products deadlines. Goal: shrink the patch gap drive faster, safer updates for users: googleprojectzero.blogspot.c…

Policy and Disclosure: 2025 Edition

Posted by Tim Willis, Google Project ZeroIn 2021, we updated our vulnerability disclosure policy ...

projectzero.google

25

73

14,337

Tim Willis @itswillis

29 Jul 2025

Great to see this live! Let's see how the trial pans out 🍿👀

Natalie Silvanovich @natashenka

29 Jul 2025

While most vendors ship timely patches for vulnerabilities reported by Project Zero, they don’t always reach users. Today, we’re announcing Reporting Transparency, a new policy to encourage downstream fixes googleprojectzero.blogspot.c…

1

2

12

1,846

Tim Willis @itswillis

25 May 2025

Part 7 (!) of @j00ru's Windows Registry adventure is now live: googleprojectzero.blogspot.c… "I will describe the various areas that are important in the context of low-level security research... all possible entry points to attack the registry... and the primitives they generate"🙌

The Windows Registry Adventure #7: Attack surface analysis

Posted by Mateusz Jurczyk, Google Project Zero In the first three blog posts of this series, I ...

projectzero.google

5

17

1,335

Tim Willis @itswillis

9 May 2025

For those that won't be in Germany next weekend to see @dillon_franke live, this is the next best thing! (post also includes Dillon's fuzzing harness and tools Dillon built along the way) 🎉

Dillon Franke @dillon_franke

9 May 2025

Thrilled to announce my new Project Zero blog post is LIVE! 🎉 I detail my knowledge-driven fuzzing process to find sandbox escape vulnerabilities in CoreAudio on MacOS. I'll talk about this and the exploitation process next week @offensive_con! googleprojectzero.blogspot.c…

1

15

1,866

Tim Willis @itswillis

16 Apr 2025

...and now, introducing Part 6 of @j00ru's work on the Windows Registry: googleprojectzero.blogspot.c… 📖👀

The Windows Registry Adventure #6: Kernel-mode objects

Posted by Mateusz Jurczyk, Google Project Zero Welcome back to the Windows Registry Adventure! ...

projectzero.google

Tim Willis @itswillis

19 Dec 2024

Part 5 of @j00ru's Windows Registry Adventure is out! googleprojectzero.blogspot.c… Incredible depth of knowledge on display, and good to see it shared as a reference with the world ❤️

1

21

68

10,101

Tim Willis @itswillis

30 Jan 2025

Two new posts from @tiraniddo today: googleprojectzero.blogspot.c… on reviving a memory trapping primitive from his 2021 post. googleprojectzero.blogspot.c… where he shares a bug class and demonstrates how you can get a COM object trapped in a more privileged process. Happy Reading! 📚

Windows Exploitation Tricks: Trapping Virtual Memory Access (2025 Update)

Posted by James Forshaw, Google Project Zero Back in 2021 I wrote a blog post about variou...

projectzero.google

97

225

33,007

Tim Willis @itswillis

7 Jan 2025

It doesn't happen very often, but Project Zero is hiring! goo.gle/41DBQBY Please share with anyone you think would be awesome for the role 🎉 Looking for at least one person. DMs open if you want to reach out about the role. The team: youtu.be/My_13FXODdU

4

94

267

49,227

Tim Willis @itswillis

19 Dec 2024

Part 5 of @j00ru's Windows Registry Adventure is out! googleprojectzero.blogspot.c… Incredible depth of knowledge on display, and good to see it shared as a reference with the world ❤️

The Windows Registry Adventure #5: The regf file format

Posted by Mateusz Jurczyk, Google Project Zero As previously mentioned in the second installme...

projectzero.google

45

117

23,717

Tim Willis retweeted

Dillon Franke @dillon_franke

17 Dec 2024

Great to see Apple quickly patch the MacOS sandbox escape/privilege escalation vulnerability I reported to them. Big thanks to @NedWilliamson, @i41nbeer, and @i41nbeer for all the help :) I'm working on a blog post and hope to release it soon!!

10

26

164

20,826

Tim Willis retweeted

Seth Jenkins @__sethJenkins

16 Dec 2024

My blog post is now live alongside @amnesty 's joint release, providing remarkable insight into an ITW exploitation campaign! googleprojectzero.blogspot.c… Turns out that you can find out quite a bit with just some kernel stacktraces ;) From Amnesty: securitylab.amnesty.org/late…

The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit

Posted by Seth Jenkins, Google Project ZeroThis blog post provides a technical analysis of exploi...

projectzero.google

2

41

106

32,553

Tim Willis @itswillis

16 Dec 2024

If you've ever wondered if one can determine a vuln from just the kernel panic logs, @__sethJenkins (feat. @tehjh & @benoitsevens) have something to share: googleprojectzero.blogspot.c… Great to collaborate with @amnesty, find vulns and get them fixed: securitylab.amnesty.org/late…

The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit

Posted by Seth Jenkins, Google Project ZeroThis blog post provides a technical analysis of exploi...

projectzero.google

11

38

7,980

Tim Willis @itswillis

12 Dec 2024

Finding 0day is not the most impactful thing that Project Zero does 😲 — it's sharing knowledge 🧠. One part of that sharing is our tooling work to help other devs and reserachers. Today's installment, @tiraniddo's updated OleView.NET👍 Blog: googleprojectzero.blogspot.c…

2

34

153

15,784

Tim Willis @itswillis

1 Nov 2024

Project Zero Blogpost recap for the month: googleprojectzero.blogspot.c… — @j00ru doing another deep dive into the Windows Registry googleprojectzero.blogspot.c… — Nick Galloway's dav1d fuzzing case study (new) googleprojectzero.blogspot.c… — an update on using LLMs to find vulns Enjoy! 🎉

The Windows Registry Adventure #4: Hives and the registry layout

Posted by Mateusz Jurczyk, Google Project Zero To a normal user or even a Win32 application dev...

projectzero.google

3

60

205

20,073

Tim Willis @itswillis

13 Jun 2024

"While... public and in-the-wild research on Android GPU drivers [exists], other chipset components may not be as frequently audited so this research sought to explore those drivers in greater detail." Hot tip: There's a video version and a proof of concept exploit at the end👍

Seth Jenkins @__sethJenkins

13 Jun 2024

My new Project Zero blog post, Driving Forward in Android Drivers is live! 🥳 googleprojectzero.blogspot.c…

1

3

13

4,038

Tim Willis @itswillis

18 Apr 2024

Join @j00ru as he shares his research/adventure through the Windows Registry: googleprojectzero.blogspot.c… 50 CVEs is just the beginning. Future posts will explore the attack surface, history, practical exploitation using hive memory corruption, cell indexes and other good times🎉

The Windows Registry Adventure #1: Introduction and research results

Posted by Mateusz Jurczyk, Google Project Zero In the 20-month period between May 2022 and Dece...

projectzero.google

1

86

160

43,060

Tim Willis @itswillis

6 Feb 2024

Great to see srldf.org working as intended! This fund would have never launched without the hard work of many, but a special shoutout to @HarleyGeiger and @charley_snyder_ to making srldf.org a reality.

Security Research Legal Defense Fund

We aim to help fund legal representation for persons who face legal issues due to good faith security research and vulnerability disclosure in cases that would advance cybersecurity for the public...

Michał Kowalczyk 🇺🇦@dsredford

4 Feb 2024

Shout out to the Security Research Legal Defense Fund for helping us go public about our train research! We're honored to be their first grantees. Longer post link to their announcement: social.hackerspace.pl/@q3k/1…

4

9

2,054

Tim Willis @itswillis

3 Nov 2023

New Project Zero blogpost by Mark Brand - first mobile device ships with MTE (and how to enable it). "MTE on a production handset for the first time is a big step forward... there's real potential to use this technology to make 0-day harder". googleprojectzero.blogspot.c…

First handset with MTE on the market

By Mark Brand, Google Project ZeroIntroduction It's finally time for me to fulfill a lo...

projectzero.google

2

72

187

53,931