Minetest - Google CTF 2019 Qualifier
CTF video write-up about the Minetest challenge from the Google CTF 2019 Qualifier. It's similar to Blocky's Revenge from Pwn Adventure 3
CTF video write-up about the Minetest challenge from the Google CTF 2019 Qualifier. It's similar to Blocky's Revenge from Pwn Adventure 3
Putting it all together. Achieving arbitrary read/write with the WebKit exploit.
video: https://www.you...
We arrange and fake JavaScript objects to create some crazy memory layout ✨🤩✨
This preparation is the necessary foundation to achieve arbitrary read/write in the next episode...
This is the bonus video for the members on Patreon on YouTube. I hope you enjoy this additional real-time commentary video. If you would compare this style of video with the main video, do you like...
2019-07-07 11:37:42 +0000 UTC View Post
This week we have another CTF video. It was a simple buffer overflow speedrun challenge, exploited with a ROP chain generated by Ropper. But we also analyse my timeline of the run.
blog...
2019-07-07 11:37:17 +0000 UTC View Post
Hey Patrons,
June was interesting , because five videos fell into the month.
As you know, here on Patreon you are supporting each video, but you can also set a monthly limit. In my introdu...
Part 6: We go over the boxed vs. unboxed values, how to convert Integer addresses to Doubles and why our bug is a memory corruption.
In this video we introduce the fakeobj() primitive. It's based on the bug used in addrof() and allows us to corrupt the memory of internal JavaScriptCore objects
blog: ...
2019-06-23 11:37:25 +0000 UTC View Post
We finally look at the actual exploit code! We start with the addrof() primitive, which can leak the address of a JavaScript object in memory.
It's clear that a series like the current Browser Exploitation series is not interesting to many people. Most of you might not even watch it :D But I get more positive feedback and "thank you" mess...
2019-06-10 21:50:55 +0000 UTC View Post
In this video we have a first look at the WebKit JIT compiler - the part that converts JavaScript bytecode to machine code.
blog: 2019-06-09 11:37:38 +0000 UTC
View Post
Hey Patrons,
today I have streamed again on Twitch!
I want to build Ben Eater’s 8-bit computer. But the topic doesn’t really fit on the main channel. So I wanted to make a second chan...
Last video we learned how to debug WebKit. Now we can use that to look at how JavaScriptCore implements objects and values like integers and floats. And why there is such a thing like a "butt...
2019-06-02 11:37:24 +0000 UTC View Post
We are going to try out Linus's exploit, setup a vulnerable WebKit version and learn how we can explore the internals and debug JSC.
The start of a new series. We will try to learn some basics about browser exploitation. Specifically we will look at JavaScriptCore - the JavaScript engine from WebKit.
Where does the term "script kiddie" come from? Who said it first? Let's do some hacker history research!
I'm excited to share with you a video collaboration with @herrcore from OALabs about unpacking a self-injection malware. Definitely also checkout their channel if you want to learn more about malwa...
2019-05-05 12:01:34 +0000 UTC View PostI would like to better understand why you pledge or what you pledge for. I haven't charged you for today's video and I want to know if that was the right decision, or going forward you would have b...
2019-04-28 11:39:27 +0000 UTC View Post
A vlog with a recap about the last year, how LiveOverflow is now a business and generally what is going on behind the scenes.
As you know, on Patreon you are pledging for each video I make - ...
2019-04-28 11:39:23 +0000 UTC View Post
Video write-up about the Real World CTF challenge "flaglab" that involved exploiting a GitLab 1day. Actually two CVEs are combined to achieve full remote code execution:
CVE-2018-19571 ...
2019-04-21 11:37:36 +0000 UTC View Post
We have a look at another interesting XSS vector due to weird Firefox parsing, and then explore how researchers find this stuff.
2019-04-14 09:51:32 +0000 UTC View Post
Last week I showed you a XSS on Google Search. In this follow-up video we discuss how @kinugawamasato found the XSS ...
2019-04-07 10:42:05 +0000 UTC View Post
I never thought I would experience a XSS on Google Search. But Masato Kinugawa blew my mind!
This is a video going over the difficulties of sanitizing HTML in JavaScript.
The fix ...
2019-03-31 11:57:39 +0000 UTC View Post
Hey!
This week I was three days at the YouTube Space in Berlin. I thought I could write a small comment for Patreon about this, because I think it’s quite interesting to know that this exis...
2019-03-30 17:37:45 +0000 UTC View Post
There are a lot of tutorials on ROP out there, so I try to explain the concept in a different way. Maybe that's a bad idea and a lot more confusing. But if you didn't understand it yet, or you alre...
2019-03-24 10:42:12 +0000 UTC View Post
It's a screenshot from an upcoming video series. It's part of the same series where this image was from: https://www.patre...
2019-03-17 22:29:52 +0000 UTC View Post
This is the first part where I try to explain Return-oriented Programming in a different way. And in this video I want to introduce what a weird machine is... it's kinda theoretical, but the concep...
2019-03-17 12:07:05 +0000 UTC View Post
Remember the crazy smart contract challenge from the Real World CTF? Here is a video specifically talking about the backdoor method used. Together with 2019-03-10 13:56:26 +0000 UTC View Post
We finally figure out how to create a firmware update, but als run into an annoying check. However based on what we have learned so far, we can find a bypass - rediscovering the f00dbabe issue.&nbs...
2019-03-03 12:20:38 +0000 UTC View Post
This is another challenge of the FLARE-On 2018 CTF. This challenge is about analysing the functionality of a Firefox malware, but I got a bit lucky :D
2019-02-24 11:48:07 +0000 UTC View Post