NeuroWinter

@[email protected]
38 Followers
38 Following
69 Posts

Blog on random learning in tech: neurowinter.com

Reformed #ai / #MLOps engineer now working as an #SRE at a company that specialises in data and backing up #opensource databases and #kafka.

Long time #appsec enthusiast

Alt: [email protected]

NeuroWinterDec 15

Well I finally got around to writing up my blog post on my adventures with buying e-waste from liquidators, in the hunt for POS drivers!

https://neurowinter.com/security/2025/12/15/The-Hunt-for-POS-Drivers-Continues-Your-Drivers-Are-in-Another-Castle/

The Hunt for POS Drivers Continues: Your Drivers Are in Another Castle

Bought seven dead POS terminals hunting for vulnerable printer drivers. Built a forensic imaging workflow with provenance tracking. Found absolutely nothing, every drive was professionally wiped. Here’s what I learned about driver hunting and why professional IT liquidators are your enemy.

Alex Manson
NeuroWinterNov 5, 2025
Off to #KawaiiCon today !! Super excited, if anyone is around and wants to hang out hit me up :)
NeuroWinterOct 13, 2025
New post: Advantech printer driver heap bug, likely LPE. Details + repro: https://neurowinter.com/security/2025/10/09/Multiple-Expliots-in-Advantech-Printer-Driver/ #infosec #Windows #LPE #PrinterDriver #Advantech #ReverseEngineering #WinDbg #Ghidra #CWE190 #VulnerabilityResearch #Security
Advantech printer driver: heap corruption via Monochrome blit function (DrvRender_x64_ADVANTECH.dll)

Heap corruption in the Advantech TP-3250 printer driver due to 32-bit size arithmetic and unvalidated geometry in a CopyBits-style routine; reliable crash and likely local Privilege Escalation.

Alex Manson
Show threadNeuroWinterSep 16, 2025
Ignore me those were issues in my test harness.
NeuroWinterSep 15, 2025
These sorts of things exposed in a hospital always concerns me
NeuroWinterSep 15, 2025
Whenever I head to the hospital I’m always so tempted to bring my #hackrf but it also feels too dangerous to do so.
NeuroWinterSep 15, 2025
For those of you that run #AFL++ how often do you investigate the hangs, or do you mainly focus on the crashes ?
NeuroWinterSep 15, 2025

How soon until we see bypasses and jailbreaks for CalypsoAI.

Also I really hope it’s more than just regexes and or another ai layer!

https://www.securityweek.com/f5-to-acquire-calypsoai-for-180-million/

F5 to Acquire CalypsoAI for $180 Million

Security and application delivery solutions provider F5 announced plans to acquire AI security firm CalypsoAI for $180 million.

SecurityWeek
NeuroWinterSep 15, 2025
Been working on a AFL fuzzing wrapper for a #elixirLang NIF csv parser. I think it’s working. Time to run it overnight to see if I find anything fun :)
NeuroWinterSep 15, 2025
Rob Vincent 🎙️Sep 15, 2025

It's the 30th anniversary of the film "Hackers!" Celebrate by checking out the podcast episode in which I introduced @gilahava704 to the movie. (Text transcript available.)

Go to https://modern.technology/2021/05/02/modern-technology-watches-episode-213-hackers-1995/ or search up episode 213 of "Modern Technology Watches" in your favorite podcast thing.

#Hackers #HackersMovie #Hackers30th #HackThePlanet #Podcastodon