infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

A Gentle Introduction to LLVM IR

https://mcyoung.xyz/2023/08/01/llvm-ir/
this post | permalink
[RSS] A Journey into Just-In-Time compilation in JavaScript — Part 6 — Inline Caches in SpiderMonkey

https://johngrndelwald.medium.com/a-journey-into-just-in-time-compilation-in-javascript-part-6-inline-caches-in-spidermonkey-8152c7cf55ed
this post | permalink
Hostile Group Attempts To Hijack EL AL Flight Radio Over Somali Airspace

https://simpleflying.com/el-al-flight-radio-hijac-attempt-somali-airspace/
this post | permalink
[Alex Plaskett @ X] RT by @alexjplaskett: A writeup analysis of a simple logical vulnerability at @googlechrome for which @GoogleVRP paid me $16,000.

https://blog.slonser.info/posts/cve-2023-5480/

This is CVE-2023-5480
this post | permalink
[Alex Plaskett @ X] RT by @alexjplaskett: Last year I discovered multiple bugs in virtio-net for VirtualBox (CVE-2023-22098, CVE-2023-22099, CVE-2023-22100) and wrote a 100% reliable VM escape using an out-of-bounds write (with ASLR defeat). Published the exploit code:

https://github.com/google/security-research/tree/master/pocs/oracle/virtualbox/cve-2023-22098
this post | permalink
[ϻг_ϻε @ X] RT by @steventseeley: If you complain about bogus CVEs, this is what you have to look forward to. Imagine issuing a CVE for a VARIABLE NAME CHANGE. Not even in the kernel, in a userland test program.

twitter.com/spendergrsec/status/1759724265438322962
this post | permalink
[RSS] PEAP Phase-2 authentication in Linux's wpa_suppcliant could be bypassed

https://w1.fi/cgit/hostap/commit/?id=8e6485a1bcb0baff
this post | permalink
[RSS] Imaging Data Commons libdicom DICOM File Meta Information Parsing Use-After-Free vulnerabilities

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1931

CVE-2024-24793, CVE-2024-24794
this post | permalink
@hajovonta Blasphemy!
this post | permalink
@babelcarp @hajovonta Yes teabag (apparently I'm not as fluent in tea lingo as I want to be)! The strange thing is that the same bags with the same teapot, and same amount of water the extract spreads nicely most of the time.
this post | permalink
Next Page