1. X
  2. samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
Log inSign up
samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
4,003 posts
Image
user avatar
samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
@samykamkar
think bad, do good. | sa.my
los angeles
sa.my
Joined June 2008
3,878
Following
61.2K
Followers
RepliesRepliesMediaMedia

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    May 9, 2020
    I’m finally getting some decent results producing 100%-edible iridescent tempered chocolate. The colors are from the chocolate (not any ingredient or coating) diffracting light after being forcefully molded onto a diffraction grating in vacuum.
    Image
    00:00
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Oct 31, 2020
    I've released NAT Slipstreaming, a spooky new technique that allows an attacker to remotely access any TCP/UDP service bound to a victim machine, bypassing the victim’s NAT/firewall, just by the victim visiting a website. samy.pl/slipstream/ Happy Halloween!
    Image
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    May 24, 2018
    Replying to @elonmusk and @MrNobre
    ☁ ☁ ☁ ⛅ ☁ ☁ 🚁 __🌳🌳_____🌲__🌳__ / 🚔 \ / | \ / 🚔 \ / 🚔 | \ / 🚔 🚔 \ / | \ / 🚘 \
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Dec 17, 2017
    As a high school dropout, I often struggle comprehending mathematical formulas from academic papers (aka numbers combined with squiggly lines). This github just explained so much to me:
    Image
    GitHub - Experience-Monks/math-as-code: a cheat-sheet for mathematical notation in code form
    From github.com
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Jan 5, 2020
    I've developed a new technique for bypassing firewalls/NATs and producing full TCP/UDP session to targeted user. Anyone have RCE for a service that's typically only run behind NATs (eg desktop software like Sonos, Spotify, Dropbox, etc which bind to *) and want to merge projects?
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Nov 16, 2016
    I've released PoisonTap; attacks *locked* machines, siphons cookies, exposes router & backdoors browser w/RasPi&Node youtu.be/Aatp5gCskvk
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Nov 18, 2020
    I've released webscan, a browser-based internal network scanner that detects victim's LAN IP (loops back via WebRTC) & other network hosts just by visiting a page. Can be chained w/NAT Slipstreaming+other attacks; works on mobile; no TURN/STUN/ICE needed. samy.pl/webscan
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Jun 25, 2018
    Sniff network traffic from your iOS device, no jailbreak necessary! Just plug into your mac and run: system_profiler SPUSBDataType|perl -0 -ne'/iP(?:hone|ad):.*?Serial Number: (\S+)/s?`rvictl -s $1`:0' ; sudo tcpdump -i rvi0 # standard tcpdump options/filters apply
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    May 19, 2019
    This is so deceptive. When you "disable" WiFi and Bluetooth in iOS Control Center and they gray out, they're technically still enabled. Even with Airplane Mode on, your device continues to transmit and your name can even be discovered nearby via AirDrop!
    Image
    Image
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Jun 18, 2019
    Every time I attempt to code in a new language, "yeah, I totally got this"
    Image
    user avatar
    JT
    00:00
    user avatar
    JT
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    May 11, 2020
    Very cool, macOS now prevents (current) USBdriveby/Rubber Ducky attacks where USB device emulates keyboard to take control of system just by plugging in. I suspect this can be defeated by simulating a USB hub+mirrored monitor over USB, screen scraping to extract code, then typing
    Image
    Image
    user avatar
    Cory Doctorow NO LONGER ON TWIT TER
    @doctorow
    Dec 19, 2014
    Usbdriveby: horrifying proof-of-concept USB attack boingboing.net/2014/12/19/usb…
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Jun 20, 2018
    Ahh, fresh meat! Diablo (1996 game) by @Blizzard_Ent reverse engineered and released as an open source project, compilable onto modern hardware. github.com/galaxyhaxz/dev…
    Image
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    Jul 4, 2018
    I've released frisky, a tiny collection of info, iOS tools for jailbreaking, examples of techniques to sniff/alter/reverse/inject code into closed-source mobile apps, etc, based off of the incredible work from @fridadotre and others.
    Image
    GitHub - samyk/frisky: Instruments to assist in binary application reversing and augmentation,...
    From github.com
  • user avatar
    samy k͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓͓amkar͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛͛
    @samykamkar
    May 9, 2020
    Replying to @risknc
    Yup, hard sugar candies would work really well and is an easier process. Much more common to see neat optical properties in those; chocolate just seemed more unique and ultimately was a much more challenging process (for me :)
Advertisement
Advertisement