infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

As a result of working on r4ghidra I set the ambitious goal to create REshare, an exchange format for #ReverseEngineering tools:

https://github.com/v-p-b/reshare/

The code is still in its early days (literally) but the fact that it works with complex, real life binaries tells me that this goal is worth pursuing.

I'm looking for contributors, esp. for #BinaryNinja, #IDA and #radare2 scripting so we can bring all these worlds together!
this post | permalink
You can watch my #r2con2025 talk here:

When worlds collide: r4ghidra

https://www.youtube.com/watch?v=NbSiNBaBgM4

Slides:

https://scrapco.de/dataslate/r2con-r4ghidra.pdf
this post | permalink
@Viss @cR0w @neurovagrant @hrbrmstr My question is if that key in the PoC is the same on all systems??
this post | permalink
@rogeragrimes We absolutely failed to explain laypeople what numbers they hold in their pockets must be kept secret (it's not even easy to figure it out as they're plainly visible on most cards).
this post | permalink
[RSS] exploits.club Weekly Newsletter 90 - Fuzzing Rust Subsystems, Pwn2Own Near Misses, Linux 1-Days, And More

https://blog.exploits.club/exploits-club-weekly-newsletter-90-fuzzing-rust-subsystems-pwn2own-near-misses-linux-1-days-and-more/
this post | permalink
My talk about integrating #ReverseEngineering tools is to be broadcasted in a couple of hours for #r2con2025:

https://rada.re/con/2025/

I'll release a ton of code and will be around on Discord for questions and comments.
this post | permalink
@bmaxv Now that you mention it I *really* start to suspect some fuckery between Ghidra and the filesystem because while I could get _some_ logs to a file these were also highly unreliable (like records just stopped appearing) so I could only rely on logging to Ghidra's console...
this post | permalink
Theory: the output file got cached and I was looking at old output (which is weird because I only use `with open(...)` blocks)
this post | permalink
So I just fought the weirdest bug in a while: lately #Ghidra provides a #Python scripting interface based on #Jpype (PyGhidra).

I had this script where I thought I fixed a bug by referencing X.y.z instead of X.z. Except nothing changed, the buggy behavior is still there (the file output contains garbage).

I add logging, the logs appear and show everything is fine.

Add more logs, exceptions even (to stop at a specific state). They run and show all is fine.

After I restart Ghidra the bug is gone.

To be clear: there must be some kind of bytecode caching that affects my object reference but does not affect additional logging/exception throwing??

Any ideas?
this post | permalink
My #ThinkPad started to give a humming sound when I touch it at a certain place. Any ideas?
this post | permalink
Next Page