69 Photos and videos
Final Scores and full information (so far) about the #saarCTF 2024 abrupt ending and Denial of Service:
infosec.exchange/@saarsec/11…
1
279
Calling all teams from the DACH region (Germany, Austria, Switzerland): #saarCTF 2024 is a DHM Qualifier! The highest ranking eligible DACH team in our CTF will qualify to compete.
For more information visit ctf.saarland/
1
1
281
With almost *an entire week* left to spare, the registration for saarCTF 2024 is now open! ctf.saarland/
Remember the IRC and don't forget to check our new pinned account for all future announcementsđź‘€
205
saarsec retweeted
26 Sep 2024
Attacking UNIX Systems via CUPS, Part I
evilsocket.net/2024/09/26/At…
175
1,120
3,615
1,059,701
saarsec retweeted
The bad news is there is a vulnerability in the CUPS printer system on Linux. The good news is nobody has ever gotten their printer working on Linux so they are safe.
The entire disclosure seems to have been leaked online
gist.github.com/stong/c8847e…
Here is the report and POC
89
655
6,237
347,027
Another conference, another set of @CISPA faculty cards. Find us at @USENIXSecurity in Philadelphia, learn quirky "facts" about us (hint: we are not all just about serious science all the time), and be invited to our networking event on August 14 if you can collect five.
1
2
26
12,825
This is your reminder that we still solicit (self-)nominations for the 2025 EuroS&P PC. If you have published at top security, privacy, or crypto venues before, nominate yourself. If you know others who'd fit, nominate them. Nominations will be considered until end of July.
Next year's 10th EuroS&P is looking for new PC members! If you want to nominate yourself, please fill in the Google form: forms.gle/QVroyfqwxkRwWQqF8
17
22
5,312
WHO FUCKING TOLD YOU I TOLD YOU WHEN DID I TELL YOU A LONG TIME AGO
Big Tech’s ID Verifier Hacked
169
saarsec retweeted
17 Jun 2024
đź“ŁOfficial statement: the new EU chat controls proposal for mass scanning is the same old surveillance with new branding.
Whether you call it a backdoor, a front door, or “upload moderation” it undermines encryption & creates significant vulnerabilities
signal.org/blog/pdfs/upload-…
200
3,720
7,863
2,030,127
Blacklisting a string is the best security measure.
Works especially well for potentially malicious user input!
Follow for more security tips and tricks đź’»
State of the art anti-cheat techniques:
Roblox detects if you have the string "x86dbg" in a window title (or window?), so kids are changing their display names and discord server names to x86dbg to get people kicked from Roblox.
ALT The program I’ve opened before this issue started was discord, where my friend named himself “x64dbg”, triggering the kick every time someone had thier DMs open. Even thought it kept after that, the only program that could’ve left it’s drivers running would be Cheat Engine, which I haven’t launched that windows session.
ALT This was confirmed by Bitdancer to be by design I believe: https://devforum.roblox.com/t/serious-issue-discord-servers-are-able-to-prevent-you-from-playing-roblox/2971604/31?u=ashi_division
1
257
Services are online now at github.com/saarsec/saarctf-2… including sample exploits! #saarctf
4
297