the grinch  

@[email protected]
149 Followers
292 Following
595 Posts

Programmer, Hacker, shit poster.
Powered by Arch linux 

Yes, I run @cve

Programming is funSo is hacking'; DROP TABLES posts#
CVE'snone yet, or ever probably I like my vulns
Show threadthe grinch  Jul 4, 2024
@adulau @cve @CVE_Program I would but with the rate limit this would drastically increase the delay beyond what i already have.
the grinch  Mar 19, 2024
James KettleMar 19, 2024
We've just published "Making desync attacks easy with TRACE" by new PortSwigger Research member Martin Doyenhard!
https://portswigger.net/research/trace-desync-attack
Making desync attacks easy with TRACE

Have you ever found an HTTP desync vulnerability that seemed impossible to exploit due to its complicated constraints? In this blogpost we will explore a new exploitation technique that can be used to

PortSwigger Research
the grinch  Mar 19, 2024
/r/netsecMar 19, 2024
GhostRace - Exploiting and Mitigating Speculative Race Conditions (CVE-2024-2193) https://www.vusec.net/projects/ghostrace/
GhostRace - vusec

Exploiting and Mitigating Speculative Race Conditions GhostRace: CVE-2024-2193 Race conditions arise when multiple threads attempt to access a shared resource without proper synchronization, often leading to vulnerabilities such as concurrent use-after-free. To mitigate their occurrence, operating systems rely on synchronization primitives such as mutexes, spinlocks, etc. In this work, we present GhostRace, the first security … Continue reading GhostRace →

vusec
the grinch  Jan 26, 2024
hackadayJan 26, 2024

Ingenuity has sadly made its last flight on Mars, but it had one hell of a run.

https://hackaday.com/2024/01/25/so-long-and-thanks-for-all-the-flights-ingenuity-permanently-grounded-after-72-flights/

So Long And Thanks For All The Flights: Ingenuity Permanently Grounded After 72 Flights

Just a few hours ago, NASA dropped some devastating news: Ingenuity will fly no more. Three years after dropping from the belly of the Perseverance rover and after 72 flights through the thin Marti…

Hackaday
Show threadthe grinch  Nov 16, 2023
@cve @nils_ballmann Seems to be working now.
the grinch  Nov 13, 2023
@catsnkittens Light brown
the grinch  Nov 13, 2023
@cve @nils_ballmann I just forced an update, it should be fixed now
Show threadthe grinch  Nov 11, 2023
@nils_ballmann @cve Absolutely, i will look at it in a few moments. I noticed one that didn't concern me much yesterday
the grinch  Nov 2, 2023
✧✦Catherine✦✧Nov 2, 2023

the reason i am excited about WebAssembly is because it's the first interesting computer architecture designed in the last 30 to 40 years (unlike e.g. RISC-V)

people who have not looked at how Wasm works usually don't get it, which makes me sad

the grinch  Oct 23, 2023
BleepingComputerOct 23, 2023

1Password, a popular password management platform used by over 100,000 businesses, suffered a security breach after hackers gained access to its Okta ID management tenant.

https://www.bleepingcomputer.com/news/security/1password-discloses-security-incident-linked-to-okta-breach/

1Password discloses security incident linked to Okta breach

1Password, a popular password management platform used by over 100,000 businesses, suffered a security incident after hackers gained access to its Okta ID management tenant.

BleepingComputer