Pinned
b1ack0wl
8,281 posts
b1ack0wl
@b1ack0wl
0day Researcher / Baker / 0wl / Founder of @team_h00terz
- Roses are %s%s%n Violets are �ܙ�9 "�]��@����`��� Segmentation fault.
- I accidentally found a 0day within the latest firmware (v6_211111) for the TP-Link WR940N this afternoon and was able to dev out a quick exploit. ♥️
00:00 - CVE has always been garbage. Researchers have been treating it like a trophy collection for years and the descriptions usually contain minimal to no details about the bug itself. We need something new and useful imo
- pov: it's 2024 and you need to brush your teeth
3 Million Malware-Infected Smart Toothbrushes Used In Swiss DDoS Attacks ift.tt/wsDuR1Q - /me whenever I disassemble some code in GDB and forget to set the disassembly-language to intel.
- Restricted UART shells are a waste of time especially when they're this easy to bypass.
- "we would look at xrefs to strcpy() and write a highly reliable exploit by the end of the day"
- I've finally completed part 1 (of 2) of my analysis and exploitation of an uninitialized pointer vulnerability affecting certain TP-LINK routers. I hope you all enjoy ♥️
