300 Photos and videos
Tis the season again :)
Forgive the poor audio and recording, was all from phone and final test run before go live: drive.google.com/file/d/11hI…
Socials:
- justgiving.com/page/columbia…
- facebook.com/profile.php?id=…
113
nmonkee retweeted
23 Oct 2024
CONFIRMED!! Ken Gannon (@yogehi) of NCC Group (@NCCGroupInfosec) used 5 different bugs, including a path traversal, to get a shell & install an app on the #Samsung Galaxy S24. He earns $50,000 and 5 Master of Pwn points. #Pwn2Own #P2OIreland
14
97
693
62,438
nmonkee retweeted
4 Jun 2024
No days like 0days!
Recently we've been speaking at conferences about the logic bugs we've been using at the Pwn2Own contests against Samsung and Xiaomi phones for a very long time. Our @offensive_con slides are up now:
github.com/interruptlabs/con…
1
55
169
21,457
nmonkee retweeted
25 Jan 2024
Confirmed! NCC Group EDG (@nccgroupinfosec, @_mccaulay, and @alexjplaskett) successfully used a 2-bug chain against the Alpine Halo9 iLX-F509. Style points for playing DOOM on the device! #Pwn2Own
9
60
27,341
nmonkee retweeted
24 Jan 2024
Success! The folks from NCC Group EDG (@nccgroupinfosec, @_mccaulay, and @alexjplaskett) were able to exploit the Phoenix Contact CHARX SEC-3100 and provided a light show as confirmation. #Pwn2Own #P2OAuto
12
74
18,211
24 Oct 2023
Correction – Success! Ken (@yogehi) and Ilyes (@040xZx) of NCC Group (@nccgroupinfosec) were able to execute their attack against the Xiaomi 13 Pro. They earn $20,000 and 4 Master of Pwn points. #Pwn2Own
1
6
1,606
nmonkee retweeted
29 Sep 2023
There's just one week left to complete our research survey! If you want the Government to understand how the 1990 Computer Misuse Act affects your cyber security research, then be sure to fill it in 👾
surveymonkey.co.uk/r/P2SPTMP
#CMA #cybersecurity
4
5
498
nmonkee retweeted
24 Aug 2023
1/ I kinda accidentally owned myself with my own shadow workflow attack. I definitely think they are going to become a standard technique. I mean they are pretty much the offensive powershell of the SaaS world!
So how did this happen?
1
6
10
775
Oh yeah baby, it’s time to start planning Xmas youtu.be/Hvn_e6PoXWY @TwinklyLED
1
203
nmonkee retweeted
11 Aug 2023
Slides from @alexjplaskett talk at @syspwnx have now been released:
research.nccgroup.com/2023/0…
Covering vulnerability research for Pwn2Own, Soho-smashup and printer vulns.
13
40
6,437
nmonkee retweeted
25 Jul 2023
We did a thing! It's over 10 years since we started working on this but it's still useful today:
github.com/CiscoCXSecurity/u…
Kudos to @pentestmonkey for porting the Perl bits to a modern language.
#aix #solaris #linux #unix #security
3
22
47
13,792
nmonkee retweeted
21 Jul 2023
Requiring a "skilled person" write a report before mass surveillance is imposed does little
Especially given that the UK gov HAS ALREADY heard from hundreds of "skilled" experts restating longstanding consensus: there's no such thing as a safe backdoor.
bbc.com/news/technology-6624…
6
65
236
21,511
nmonkee retweeted
29 Jun 2023
There has been much discussion about the likely failure of Thames Water in the last day or so. I’ve been looking at the accounts of England’s water companies for the last twenty years. My conclusion is that they are all environmentally insolvent. So, a thread…..
381
4,401
9,604
2,437,810
nmonkee retweeted
21 Jun 2023
We’re hiring vulnerability researchers across the globe, especially in Australia, UK, US and Canada! Whether you’re looking to bootstrap as an associate or (stack) pivot as a senior, we’re looking for motivated researchers at all levels interruptlabs.co.uk/careers
1
32
80
18,828
nmonkee retweeted
25 Apr 2023
According to the terms and conditions as per the ballot application process and bbc website it does state this would NOT be first come first served.
You have breeched your own terms and conditions. You owe a massive explanation as to why we have received emails to state we have won to be met with this absolute shambles.
108
40
774
33,431
