Exploit Dev / Reverse Engineering at @ImmersiveLabs
Joined November 2020
- Tweets 116
- Following 105
- Followers 118
- Likes 244
15 Photos and videos
If you're interested in AI security, have a go at our prompt injection challenge on @immersivelabs. I've spent the last couple of weeks working on the frontend so hopefully it's a good user experience 😄 Let me know what you think! 🤖 #ChatGPT #ai prompting.ai.immersivelabs.c…
1
4
7
1,997
Naomi retweeted
16 Sep 2022
I had a small adventure with leaky websocket that would spit out plaintext credentials. The blog post documents the journey from discovery to disclosure.
sec.stealthcopter.com/cve-20…
2
3
Naomi retweeted
27 Jun 2022
What’s the difference between a ‘zero-day’ and ‘one-day’? Read our latest blog by Will Roberts @rushisec, Cyber Security Engineer, to see how he developed a proof of concept exploit using limited details from Microsoft. bit.ly/3xUukSB #cybersecurity
6
2
My exploit script for Nimbuspwn (CVE-2022-29799/CVE-2022-29800) has been released and is available below. Method for hitting the race is a little lazy but usually works in 12 attempts or less. Comes with a Sigma rule for blue teamers. Have fun!
github.com/Immersive-Labs-Se…
2
3
9
Naomi retweeted
22 Apr 2022
From a VR student today on our ROP chain lessons. I'm dying 😂:
"This week's been like"
19
613
2,411
Naomi retweeted
9 Feb 2022
I recently had the pleasure of taking @zeropointsecltd's Certified Red Team Operator (#CRTO) course, and it didn't disappoint.
Oh yeah, I reviewed it on my blog too, so you can get a feel for if it's right for you! Happy #hacking everyone.
heartburn.dev/zeropointsecur…
1
6
12
Very happy to say I've been promoted from junior to mid-level at @immersivelabs ! As well as this, I'm going to be moving from the Appsec team to the Red team, specialising in reverse engineering and exploit development... 1/2
1
10
Starting to learn some kernel exploitation and having a lot of fun with it :)
I just pwned Kernel Adventures: Part 1 in Hack The Box! hackthebox.com/achievement/c… #hackthebox #htb #cybersecurity
1
1
6
Another year, another CTF writeup - this one's on an interesting pwn challenge from the recent @hackthebox_eu Cyber Santa CTF involving some creative ROPchain generation. rushisec.net/ctf-writeup-min…
1
4
Very elegant explanation of a complex bug, well worth the read.
9 Dec 2021
In Part 2 of 3, ZDI Vuln Researcher @hosselot details the root cause of CVE-2021-21220. This was used during #Pwn2Own to exploit both #Chrome and #Edge. Today’s blog starts with how to trigger the vuln and goes on to describe why the bug occurs. zerodayinitiative.com/blog/2…
🏎🏎
9 Dec 2021
NEWS FLASH: Immersive Labs has been selected as @McLarenF1's official partner to support cyber workforce optimization❗
Get the highlights here: hubs.ly/Q010y6fs0
2
Seeing expensive 0days dropped on a random tuesday is the best part of twitter
2
Also, come watch me demo the new C beginner series, with some hints on what's coming up next on our roadmap 🙂
18 Aug 2021
We have over 200 labs dedicated to Application Security with more being added each week. Join us for our next live demo webinar see C beginner series action! Register now to save your place: hubs.ly/H0VvX780
2