flawedworld

@flawedworld@infosec.exchange
397 Followers
277 Following
15 Posts

A random person on the internet interested in InfoSec and NatSec.

For private messaging with E2EE, please contact me on Matrix. Message me on Mastodon first or else I might reject your invite. (See my "About" section).

Posts are my own and do not reflect my employers views. Engagement does not constitute endorsement.

GitHubhttps://github.com/flawedworld
Twitterhttps://twitter.com/flawedworlddev
Matrixhttps://matrix.to/#/@flawedworld:matrix.org
LocationA very dystopian hellscape
flawedworld5d ago

Google has publicly released AOSP 16 today.

Android 16 porting work is now starting immediately.

We will be working around the clock until you get an OTA on your device with Android 16.

If you appreciate our work: https://grapheneos.org/donate

GrapheneOS donations

Donating to support development of GrapheneOS.

GrapheneOS
flawedworldSep 11, 2024

brb building a TEMPEST room in my basement

https://arxiv.org/pdf/2409.02292

flawedworldSep 11, 2024
https://www.whitehouse.gov/oncd/briefing-room/2024/09/03/fact-sheet-biden-harris-administration-releases-roadmap-to-enhance-internet-routing-security/ Love this!
Fact Sheet: Biden-Harris Administration Releases Roadmap to Enhance Internet Routing Security | ONCD | The White House

September 3, 2024 Today, the White House Office of the National Cyber Director (ONCD) released a Roadmap to Enhancing Internet Routing Security, which aims to address a key security vulnerability associated with the Border Gateway Protocol (BGP) – the protocol that underpins the way information is routed across networks. In addition to releasing the report,…

The White House
flawedworldSep 10, 2024

I kind of miss the old monorail UI compared to the new modern Angular UI at Google Issues...

Though monorail was crazy old and it was always amazing to me how it wasn't killed sooner

flawedworldSep 6, 2024

Looks like using leaked keyboxes to bypass hardware attestation is now mainstream. (Finally!)

Expect this to be patched trivially since when used in tandem with GPU driver fingerprinting, it should be quite easy to automate revocations.

flawedworldAug 6, 2024

Looking at Windows Update to obtain older Windows XP patches for a project I'm working on.. turns out Brother Printer Drivers are STILL being updated in 2024 for Windows XP!

https://catalog.update.microsoft.com/ScopedViewInline.aspx?updateid=26a1820e-9aa1-45a9-8eab-0ba5b540e657

https://catalog.update.microsoft.com/ScopedViewInline.aspx?updateid=a2f01526-da76-43c8-9128-24fe005256cb

Microsoft Update Catalog

flawedworldJul 28, 2024
https://chromium-review.googlesource.com/c/v8/v8/+/5509903 <3
flawedworldJul 19, 2024
Computers were a mistake.
Show threadflawedworldJul 15, 2024
Oh and I forgot to mention using JTAG on your PC to do cool shit but I don't think that realm has been explored much :)
Show threadflawedworldJul 14, 2024
I have multiple friends who game on PCILeech cards (i.e cards which take advantage of broken/disabled IOMMU and let you read/write _all_ RAM) - I don't really see how you can sustainably defend against that.