LiveOverflow

explore weird machines...

WebKit RegExp Exploit addrof() walk-through - browser 0x04

We finally look at the actual exploit code! We start with the addrof() primitive, which can leak the address of a JavaScript object in memory.

Browser Exploitation
LiveOverflow

Just-in-time Compiler in JavaScriptCore - browser 0x03

Looking at the WebKit JIT compiler - the part that converts JavaScript bytecode to machine code.

Browser Exploitation
LiveOverflow

The Butterfly of JSObject - browser 0x02

Let's have a look at how JavaScriptCore implements JavaScript Objects and values like integers and floats. We can use lldb to look into the memory.

Browser Exploitation
LiveOverflow

Setup and Debug JavaScriptCore / WebKit - browser 0x01

We are going to try out Linus's exploit and setup a vulnerable WebKit version including debug symbols.

Browser Exploitation
LiveOverflow

New Series: Getting Into Browser Exploitation - browser 0x00

The start of a new series. We will try to learn some basics about Browser Exploitation.

Browser Exploitation
LiveOverflow

The Origin of Script Kiddie - Hacker Etymology

The term script kiddie probably originated around 1994, but the first public record is from 1996.

Blog
LiveOverflow

Unpacking Redaman Malware & Basics of Self-Injection Packers - ft. OALabs

Guest video by OALabs about unpacking a self-injection malware.

Reverse Engineering
LiveOverflow

Business, Money, 300k Subscribers and What's Next

It's been a while since I talked about the state of the channel. So let's recap 2018 and look into the future.

Blog
LiveOverflow

GitLab 11.4.7 Remote Code Execution

Video write-up about the Real World CTF challenge "flaglab" that involved exploiting a GitLab 1day. Actually two CVEs were combined to achieve full remote code execution...

Capture The Flag
LiveOverflow