Advertisement · 728 × 90

Posts by DTM

Preview
10 Doom.PDF YouTube video by Ange Albertini

In ~1h, we’ll explore the awesome and clever DOOM.PDF!
www.youtube.com/live/t17joAi...

1 year ago 2 2 0 0
I started with very simple concepts like: 'when were "files" being introduced to end-users?'. Then I 'connect' to my previous talk, showing that some old tricks still work in modern setup, such as remote hacking of cars in 2024 via a format from 1977. Then I introduce modern tools such as Mitra, as we move from funky PoCs to fearsome tools, to generate those PoCs. A mention of small format bugs at scale and the risk of privacy leaks: Acropalypse, SQLBuddy. Now it's time for more advanced stuff: near-polyglots, crypto-polyglots, hash collisions and hashquines. And finally, introducing a genuine use of AI in file format filtering at scale, with Magika, the open-source AI filter at Google.

I started with very simple concepts like: 'when were "files" being introduced to end-users?'. Then I 'connect' to my previous talk, showing that some old tricks still work in modern setup, such as remote hacking of cars in 2024 via a format from 1977. Then I introduce modern tools such as Mitra, as we move from funky PoCs to fearsome tools, to generate those PoCs. A mention of small format bugs at scale and the risk of privacy leaks: Acropalypse, SQLBuddy. Now it's time for more advanced stuff: near-polyglots, crypto-polyglots, hash collisions and hashquines. And finally, introducing a genuine use of AI in file format filtering at scale, with Magika, the open-source AI filter at Google.

I made my #38C3 talk on file formats (fearsome file formats) for all kinds of audience.
Here's how...

Hopefully, a little bit for all kinds of people!

1 year ago 7 3 1 0
Preview
Fearsome File Formats Specifications are enough, they say… 10 years after 31c3's "Funky File Formats" … Have things improved? With so many open-source parse...

Recording: media.ccc.de/v/38c3-fears...

1 year ago 4 3 0 0
Preview
Fearsome File Formats Presented at 38C3 in Hamburg on the 28th December 2024. With so many open-source parsers being tested and fuzzed, and widely available specs, what c…

I presented about file formats at #38C3.
Thanks for the feedback everyone!
speakerdeck.com/ange/fearsom...

1 year ago 26 5 1 1
Delinea Protocol Handler - Remote Code Execution via Update Process (CVE-2024-12908) AmberWolf Security Research Blog

Some Christmas cheer with @buffaloverflow.rw.md . A nice bug in the URL handler for Delinea Secret Server.

blog.amberwolf.com/blog/2024/de...

1 year ago 3 3 0 0
Preview
GitHub - CCob/DRSAT: Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domain joined machies Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domain joined machies - CCob/DRSAT

Sorry folks, I had to remove the Disconnected GPO project from GitHub... but never fear, it has returned as Disconnected RSAT since it now supports the Certificate Authority and Certificate Templates snap-ins in addition to Group Policy support.
github.com/CCob/DRSAT

1 year ago 22 10 0 0
Preview
GitHub - almounah/superdeye: Indirect Syscall with TartarusGate Approach in Go Indirect Syscall with TartarusGate Approach in Go. Contribute to almounah/superdeye development by creating an account on GitHub.
1 year ago 6 2 0 1
Merry CRTmas

Merry CRTmas everyone poc.lol/crtmas/

1 year ago 11 2 1 1
Advertisement
Post image

Bug Bounty Tip

XSS Filter Bypass: mXSS

Cheers!

1 year ago 7 2 0 0

Is that a 257. IP address?

1 year ago 0 0 0 0
Post image

This hack is brilliant, APT28 hopping into a target environment over wifi by compromising neighbouring companies and finding a dual-homed host within range.

volexity.com/blog/2024/11...

And yet... they got caught doing this!

1 year ago 37 2 2 7