0xMitsurugi

@0xMitsurugi@infosec.exchange
46 Followers
78 Following
23 Posts
Reverse, exploit, pwn.
0xMitsurugiSep 24, 2024

Can LLM help vulnerabilty researcher to find vulns?

Short answer : no
Long answer : also no, but explained in a blogpost 😆
https://0x90909090.blogspot.com/2024/09/using-llm-for-vulnerability-research.html

Using LLM for vulnerability research

In recent times, there has been increasing discourse surrounding artificial intelligence (AI) and large language models (LLMs). Although the...

0xMitsurugiAug 21, 2024
interesting thoughts : https://gynvael.coldwind.pl/?lang=en&id=791
FAQ: The tragedy of low-level exploitation

0xMitsurugiMay 31, 2024
Everyone's slamming AI for hallucinations, resource drain, data woes, and high costs.
Unpopular opinion: I'm using AI and local LLMs, and it's a fun ride :-)
0xMitsurugiMar 12, 2024
AskaMar 12, 2024

As the team is growing, Synacktiv is looking for an additional team leader for its Reverse-Engineering Team!
Find out if you are a good candidate by reading our offer (🇫🇷).

https://www.synacktiv.com/responsable-de-lequipe-reverse-engineering

Responsable de l'équipe Reverse-Engineering

Synacktiv
0xMitsurugiOct 5, 2023
Super happy to share the latest blogpost on #Scudo! Explore the defenses and get some insight in the source code. 💡 Read it here: https://www.synacktiv.com/publications/behind-the-shield-unmasking-scudos-defenses
Behind the Shield: Unmasking Scudo's Defenses

Scudo is part of LLVM (https://llvm.

Synacktiv
0xMitsurugiOct 3, 2023
Raphaël RigoOct 2, 2023
Really cool write-up by 0vercl0k on his Pwn2Own 2022 ICS target. Expect reverse engineering, unexpected logic bugs, clever brute-forcing and popping calc.exe.
https://doar-e.github.io/blog/2023/05/05/competing-in-pwn2own-ics-2022-miami-exploiting-a-zero-click-remote-memory-corruption-in-iconics-genesis64/
Competing in Pwn2Own ICS 2022 Miami: Exploiting a zero click remote memory corruption in ICONICS Genesis64

0xMitsurugiJul 3, 2023
James PistoleJul 1, 2023
If the server costs are too much, have they considered #Twitter by mail? One of these bad boys can fit 1440000 / 280 = 5142 tweets! Just mail one out once a week! That’s 734 tweets a day! Problem solved!
0xMitsurugiJun 12, 2023
chompieJun 8, 2023
Very honored to be invited to speak at SSTIC today. You can watch the video for my talk “Deep Attack Surfaces, Shallow Bugs” here: https://www.sstic.org/2023/presentation/deep_attack_surfaces_shallow_bugs/
SSTIC2023 » Présentation » Deep Attack Surfaces, Shallow Bugs - Valentina Palmiotti

0xMitsurugiJun 6, 2023

I'll be at @sstic !
https://www.sstic.org/2023/news/

french security conference located inRennes

SSTIC2023 » Actualité pour 2023

0xMitsurugiMar 24, 2023
Trend Zero Day InitiativeMar 23, 2023
That concludes Day 2 of #P2OVancouver – we awarded $475,000 for 10 unique zero-days today, bringing the total awarded to $850,000! Stay tuned tomorrow for the final day of the competition. #Pwn2Own