Podcast Episodes (Page 15)

• 65 - PDF Exploits, GPGME Making Mistakes EZ and Favicon Tracking

  23 February 2021

  A couple privacy violations, PDF exploits, and a complicated API being misused by developers.

• 64 - Industrial Control Fails and a Package disguised in your own supply

  16 February 2021

  "Beg Bounty" hunters, dependency confusion, iOS kernel vuln, and how not to respond to security research.

• 63 - MediaTek BootROM Broken, Free Coffee, and an iOS Kernel Exploit

  09 February 2021

  A lot of discussion this week about OSS security and security processes, an iOS kernel type confusion and MediaTek Bootloader bypass impacting everything since atleast 2014.

• 62 - OSED, North Korean hackers, NAT Slipstream 2.0, and PGP (in)security

  02 February 2021

  Starting with a long discussion about the North Korean hackers targeting security reseachers, and some thoughts (rants) about the newly released Windows exploit dev course from Offensive Security before getting into some real exploits including NAT Slipstreaming 2.0 and a new Sudo vuln.

• 61 - Snooping YouTube History and Breaking State Machines

  26 January 2021

  This week is a shorter episode, but still some solid bugs to look at. From a full chain Chrome exploit, to a Kindle chain from remote to root and a eBPF incorrect calculation leading to OOB read/write.

• 60 - Breaking Lock Screens & The Great Vbox Escape

  19 January 2021

  Several lockscreen-related vulnerabilities this week, a cross-site leak, and the hijacking of all .cd domains.

• 59 - Universal Deserialization, Stealing Youtube Videos, and CTFs

  12 January 2021

  A new universal deserialization gadget for Ruby, a Rocket.Chat SAML auth bypass, and some heap exploitation research.

• 58 - Hacking Nintendo 3DS, Apple vs Corellium, and Android Bugs

  05 January 2021

  An update on Apple v. Corellium, some 3DS vulnerabilities, and some drama on this weeks episode.

• 57 - Fireeye, PS4 exploit, and MacOS LPE

  15 December 2020

  Big news this week as several government agencies and contractors may have been compromised. We also have a number of great writeups this week covering everything from a PS4 webkit exploit, MacOS, and Windows.

• 56 - Rooting iOS, Hacking with cURL, and the end of Use-After-Free

  08 December 2020

  Some solid exploit development talk in this episode as we look at an iOS vuln, discuss the exploitability of a cURL buffer overflow and examine a new kernel UAF mitigation.

• 55 - Bad Blocklists, Legal News, and Windows Vulns

  01 December 2020

  More SD-PWN, more Tesla hacks, potential RCE in Drupal, and a couple windows vulns.

• 54 - Jailbreaks, Stealing Playstation Accounts, and Automatic Exploit Generation

  24 November 2020

  This week we talk a bit about some Black Friday deals before jumping into another SD-WAN pwn, some jailbreaks, and research into automatic exploit generation.

• 53 - Hacking Voatz and Rooting Ubuntu

  17 November 2020

  Some interesting tips and tricks as we look at multiple privileges escalations from XNU to Ubuntu, Bitdefender, and Dropbox (HelloSign).

• 52 - Pwn2Own, Tianfu Cup, and Other Hacks

  10 November 2020

  A Facebook DOM-based XSS, Rocket.chat and Github Actions RCEs, and a Brave Browser information disclosure in this week's episode.

• 51 - A Look at OSEP, Hacking Metasploit, and the Legal Risks of Research

  03 November 2020

  This week we are joined by CTS to discuss fuzzing. We also take at PEN-300/OSEP. Before jumping into this weeks exploits, from NAT Slipstreaming to a Metasploit command injection and plenty in between.