Posts tagged 'Mixed Podcast'

• 61 - Snooping YouTube History and Breaking State Machines

  26 January 2021

  This week is a shorter episode, but still some solid bugs to look at. From a full chain Chrome exploit, to a Kindle chain from remote to root and a eBPF incorrect calculation leading to OOB read/write.

• 60 - Breaking Lock Screens & The Great Vbox Escape

  19 January 2021

  Several lockscreen-related vulnerabilities this week, a cross-site leak, and the hijacking of all .cd domains.

• 59 - Universal Deserialization, Stealing Youtube Videos, and CTFs

  12 January 2021

  A new universal deserialization gadget for Ruby, a Rocket.Chat SAML auth bypass, and some heap exploitation research.

• 58 - Hacking Nintendo 3DS, Apple vs Corellium, and Android Bugs

  05 January 2021

  An update on Apple v. Corellium, some 3DS vulnerabilities, and some drama on this weeks episode.

• 57 - Fireeye, PS4 exploit, and MacOS LPE

  15 December 2020

  Big news this week as several government agencies and contractors may have been compromised. We also have a number of great writeups this week covering everything from a PS4 webkit exploit, MacOS, and Windows.

• 56 - Rooting iOS, Hacking with cURL, and the end of Use-After-Free

  08 December 2020

  Some solid exploit development talk in this episode as we look at an iOS vuln, discuss the exploitability of a cURL buffer overflow and examine a new kernel UAF mitigation.

• 55 - Bad Blocklists, Legal News, and Windows Vulns

  01 December 2020

  More SD-PWN, more Tesla hacks, potential RCE in Drupal, and a couple windows vulns.

• 54 - Jailbreaks, Stealing Playstation Accounts, and Automatic Exploit Generation

  24 November 2020

  This week we talk a bit about some Black Friday deals before jumping into another SD-WAN pwn, some jailbreaks, and research into automatic exploit generation.

• 53 - Hacking Voatz and Rooting Ubuntu

  17 November 2020

  Some interesting tips and tricks as we look at multiple privileges escalations from XNU to Ubuntu, Bitdefender, and Dropbox (HelloSign).

• 52 - Pwn2Own, Tianfu Cup, and Other Hacks

  10 November 2020

  A Facebook DOM-based XSS, Rocket.chat and Github Actions RCEs, and a Brave Browser information disclosure in this week's episode.

• 51 - A Look at OSEP, Hacking Metasploit, and the Legal Risks of Research

  03 November 2020

  This week we are joined by CTS to discuss fuzzing. We also take at PEN-300/OSEP. Before jumping into this weeks exploits, from NAT Slipstreaming to a Metasploit command injection and plenty in between.

• 50 - Low-cost Penetration Testing, High Performance Fuzzing and Github RCEs

  27 October 2020

  A lot to cover in this episode, from high performance fuzzing on GPUs, to low-cost pentesters, and APT groups. And, of course many vulns from GitHub RCEs to VMWare Workstation race conditions.

• 49 - Some Discord, a Bad Neighbor and a BleedingTooth

  20 October 2020

  It has been a while since we had an exploit extravaganza but here we are. Several binary-level issues from Bad Neighbor on Windows to BleedingTooth on Linux, and several vulns in Qualcomm SoCs, even a Discord RCE.

• 48 - Breaking into HashiCorp Vault, Apple and Google

  13 October 2020

  Its a web-exploit heavy episode impacing Apple, Hasicorp, Azure, Google, and even a DOMPurify Bypass. Then we end-off with a look into benchmarking fuzzers, and a look at the House of Muney heap exploitation technique.

• 47 - Fingerprinting Exploit Devs, BLURtooth and Punking Punkbuster

  06 October 2020

  Every wondering how you might fingerprint and trace exploit devs in the wild? Wondered what a backdoor in a D-Link router looks like? Want to hack Facebook (for Android)? We have all of that and more!