..

Archive

• 2022-07-04 eBPF verifier bug: Incorrect bounds update when BPF_JNE{EQ}
• 2022-07-04 eBPF verifier bug: mishandling bounds in adjust_scalar_min_max_vals()
• 2022-06-23 [paper reading] Design and Implementation of Nested Virtualization
• 2022-06-07 第一次破解 APP 小记
• 2022-05-16 CVE-2020-27194 or another 0-day?
• 2022-04-24 d3ctf-d3bpf
• 2022-04-19 fork on WINDOWS
• 2022-04-12 MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation
• 2022-04-12 Technical background of MoonShine
• 2022-04-10 IMF: Inferred Model-based Fuzzer
• 2022-04-05 Winapp fuzzing: Winnie/harnessgen
• 2021-12-21 [hxpctf2021] 部分 pwn 题 writeup
• 2021-12-17 [CVE-2021-45402] eBPF verifier bug: Forgot to update reg bounds after calling zext_32_to_64
• 2021-12-06 [hitcon2021] 部分 pwn 题 writeup
• 2021-11-24 [n1ctf2021] 部分 pwn 题 writeup
• 2021-11-03 syzkaller internals: grammar system
• 2021-11-02 syzkaller internals: architecture
• 2021-10-27 CVE-2017-7308 - packet_sock 结构体利用
• 2021-10-12 ebpf-fuzzer 源码分析
• 2021-05-10 [dc29q] tiamat writeup