infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

Healing my earworm with the new Car Bomb EP

https://carbomb.bandcamp.com/album/tiles-whisper-dreams-ep

#extrememetal
this post | permalink
#Linux eBPF vulnerabilities incoming (unprivileged eBPF required) + disclosure troubles:

https://www.openwall.com/lists/oss-security/2025/08/03/1
this post | permalink
@freddy @ifsecure Here's the official announcement, FTR: https://www.mail-archive.com/security-announce@lists.apple.com/msg00842.html (APPLE-SA-07-30-2025-1 Safari 18.6)

Based on the previously linked issue it looks like the patch window was this big due to the misalignment of patch cycles, no?
this post | permalink
[RSS] Exploring possible solutions to the inconsistency in how Windows searches case-insensitively for named resources

https://devblogs.microsoft.com/oldnewthing/20250723-00/?p=111403

Some fun anti-reverse possibilities here :)
this post | permalink
Why does [ #WinDbg ] show me the wrong function?

https://devblogs.microsoft.com/oldnewthing/20050322-00/?p=36113

TIL about COMDAT folding #compiler optimization!
this post | permalink
[RSS] Exploit development for vulnerabilities in Windows over MS-RPC

https://incendium.rocks/posts/Exploit-Development-For-MSRPC/
this post | permalink
[RSS] MaterialX and OpenEXR Security Audit

https://www.shielder.com/blog/2025/07/materialx-and-openexr-security-audit/
this post | permalink
[RSS] Characterizing the Raspberry Pico 2 FI countermeasures - Part 1

https://www.ioactive.com/characterizing-the-raspberry-pico-2-fi-countermeasures-part-1/
this post | permalink
@G33KatWork IIRC BSim docs can be a bit hard to find, here I try to keep an up-to-date version (just bumped to 11.4.1): https://scrapco.de/ghidra_docs/Features/BSim/
this post | permalink
#Ghidra 11.4.1 released

https://github.com/NationalSecurityAgency/ghidra/releases/tag/Ghidra_11.4.1_build

What's New:
https://github.com/NationalSecurityAgency/ghidra/blob/Ghidra_11.4.1_build/Ghidra/Configurations/Public_Release/src/global/docs/WhatsNew.md

Change History:
https://github.com/NationalSecurityAgency/ghidra/blob/Ghidra_11.4.1_build/Ghidra/Configurations/Public_Release/src/global/docs/ChangeHistory.md
this post | permalink
Next Page