explore weird machines...
We finally look at the actual exploit code! We start with the addrof() primitive, which can leak the address of a JavaScript object in memory.
Looking at the WebKit JIT compiler - the part that converts JavaScript bytecode to machine code.
Let's have a look at how JavaScriptCore implements JavaScript Objects and values like integers and floats. We can use lldb to look into the memory.
We are going to try out Linus's exploit and setup a vulnerable WebKit version including debug symbols.
The start of a new series. We will try to learn some basics about Browser Exploitation.
The term script kiddie probably originated around 1994, but the first public record is from 1996.
Guest video by OALabs about unpacking a self-injection malware.
It's been a while since I talked about the state of the channel. So let's recap 2018 and look into the future.
Video write-up about the Real World CTF challenge "flaglab" that involved exploiting a GitLab 1day. Actually two CVEs were combined to achieve full remote code execution...
