0xor0ne

@0xor0ne@infosec.exchange

Cyber Security - Reverse Engineering - IoT/Embedded - Exploit - Linux kernel and Cats - PhD - My Toots, My Opinions

This profile is from a federated server and may be incomplete. Browse more on the original instance.

0xor0ne, to infosec

Heap exploitation series by
@ch0pin

https://infosecwriteups.com/the-toddlers-introduction-to-heap-exploitation-part-1-515b3621e0e8

https://infosecwriteups.com/the-toddlers-introduction-to-heap-exploitation-part-2-d1f325b74286

https://infosecwriteups.com/the-toddlers-introduction-to-heap-exploitation-overflows-part-3-d3d1aa042d1e

https://infosecwriteups.com/use-after-free-13544be5a921

https://infosecwriteups.com/the-toddlers-introduction-to-heap-exploitation-fastbin-dup-to-stack-part-4-1-425592a2870b

https://infosecwriteups.com/the-toddlers-introduction-to-heap-exploitation-fastbin-dup-consolidate-part-4-2-ce6d68136aa8

https://infosecwriteups.com/the-toddlers-introduction-to-heap-exploitation-unsafe-unlink-part-4-3-75e00e1b0c68

https://infosecwriteups.com/the-toddlers-introduction-to-heap-exploitation-house-of-spirit-part-4-4-252cd8928f84

https://infosecwriteups.com/the-toddlers-introduction-to-heap-exploitation-house-of-lore-part-4-5-1b5865297057

0xor0ne, to linux

Very interesting reading on Linux page cache, memory management, mmap and cgroups

https://biriukov.dev/docs/page-cache/0-linux-page-cache-for-sre/

0xor0ne, to windows

Excellent beginners introduction to Windows kernel exploitation

Part 1: https://mdanilor.github.io/posts/hevd-0/
Part 2: https://mdanilor.github.io/posts/hevd-1/
Part 3: https://mdanilor.github.io/posts/hevd-2/
Part 4: https://mdanilor.github.io/posts/hevd-3/
Part 5: https://mdanilor.github.io/posts/hevd-4/

0xor0ne, to linux

Introduction for beginners to Linux processes and execve() system call

https://iq.thc.org/how-does-linux-start-a-process

0xor0ne, to infosec

Nice introduction for beginners to Linux kernel exploitation

Debugging with QEMU: https://blog.k3170makan.com/2020/11/linux-kernel-exploitation-0x0-debugging.html
Stack Overflows: http://blog.k3170makan.com/2020/11/linux-kernel-exploitation-0x1-smashing.html
RIP control: https://blog.k3170makan.com/2021/01/linux-kernel-exploitation-0x2.html

0xor0ne, to Cybersecurity

Excellent overview of glibc heap exploitation techniques by @0xricksanchez

https://0x434b.dev/overview-of-glibc-heap-exploitation-techniques/

0xor0ne, to linux

Useful collection of notes to learn operating systems and Linux kernel internals

https://linux-kernel-labs.github.io/refs/heads/master/index.html

0xor0ne, to linux

Linux debugging, profiling and tracing training

Slides: https://bootlin.com/doc/training/debugging/debugging-slides.pdf

Lab exercises: https://bootlin.com/doc/training/debugging/debugging-labs.pdf

Lab material (.tar.xz): https://bootlin.com/doc/training/debugging/debugging-labs.tar.xz

0xor0ne, to infosec

FiiO M6 (portable high-resolution lossless music player) reverse engineering and exploitation.

Find a kernel bug: https://stigward.github.io/posts/fiio-m6-kernel-bug/

LPE exploit: https://stigward.github.io/posts/fiio-m6-exploit/

image/jpeg
image/jpeg
image/jpeg

0xor0ne, to Cybersecurity

VirtualBox internals, vulnerabilities analysis and exploitation (CVE-2023-21987 and CVE-2023-21991)

https://qriousec.github.io/post/vbox-pwn2own-2023/

image/jpeg
image/jpeg

0xor0ne, to hardware

Hardware hacking to bypass BIOS passwords

https://blog.cybercx.co.nz/bypassing-bios-password

image/jpeg
image/jpeg

0xor0ne, to infosec

Excellent introduction to malware analysis for beginners

Part 1: https://intezer.com/blog/malware-analysis/malware-reverse-engineering-beginners/

Part 2: https://intezer.com/blog/incident-response/malware-reverse-engineering-for-beginners-part-2/

image/jpeg
image/jpeg
image/jpeg

0xor0ne, to Cybersecurity

Collection of links to blog posts, write-ups and papers related to cybersecurity, reverse engineering and exploitation

https://github.com/0xor0ne/awesome-list/blob/main/topics/cybersec.md

image/jpeg

0xor0ne, to linux

ptrace, mmap and the clone system calls for process injection in Linux

https://mutur4.github.io/posts/linux-malware-development/remote-process-injection/

image/jpeg

0xor0ne, to infosec

Excellent series on malware reverse engineering for beginners

Part 1: https://intezer.com/blog/malware-analysis/malware-reverse-engineering-beginners/

Part 2: https://intezer.com/blog/incident-response/malware-reverse-engineering-for-beginners-part-2/

image/jpeg
image/jpeg
image/jpeg

0xor0ne, to linux

Useful websites collecting Linux kernel syscall tables for various architectures and kernel versions

https://arm64.syscall.sh

https://syscalls.mebeim.net/

image/png

0xor0ne, to infosec

Breaking bare metal firmware encryption (FortiGate firewalls) for security research.
Credits Jon Williams

https://bishopfox.com/blog/breaking-fortinet-firmware-encryption

image/jpeg
image/jpeg

0xor0ne, to rust

Excellent writeup on reverse engineering binaries by Ben Herzog

https://research.checkpoint.com/2023/rust-binary-analysis-feature-by-feature/

image/jpeg
image/jpeg
image/jpeg

0xor0ne, to infosec

Excellent guide on ARM64 (AArch64) assembly programming

https://modexp.wordpress.com/2018/10/30/arm64-assembly/?ref=0xor0ne.xyz

image/jpeg
image/jpeg
image/jpeg

0xor0ne, to Cybersecurity

Excellent series on arm reversing and exploitation

https://8ksec.io/arm64-reversing-and-exploitation-part-1-arm-instruction-set-simple-heap-overflow/
https://8ksec.io/arm64-reversing-and-exploitation-part-2-use-after-free/
https://8ksec.io/arm64-reversing-and-exploitation-part-3-a-simple-rop-chain/
https://8ksec.io/arm64-reversing-and-exploitation-part-4-using-mprotect-to-bypass-nx-protection-8ksec-blogs/
https://8ksec.io/arm64-reversing-and-exploitation-part-5-writing-shellcode-8ksec-blogs/
https://8ksec.io/arm64-reversing-and-exploitation-part-6-exploiting-an-uninitialized-stack-variable-vulnerability/
https://8ksec.io/arm64-reversing-and-exploitation-part-7-bypassing-aslr-and-nx/
https://8ksec.io/arm64-reversing-and-exploitation-part-8-exploiting-an-integer-overflow-vulnerability/
https://8ksec.io/arm64-reversing-and-exploitation-part-9-exploiting-an-off-by-one-overflow-vulnerability/
https://8ksec.io/arm64-reversing-and-exploitation-part-10-intro-to-arm-memory-tagging-extension-mte/

image/jpeg

0xor0ne, to ReverseEngineering

Introduction tutorial on Ghidra debugger directly from Ghidra development team:

https://github.com/NationalSecurityAgency/ghidra/tree/master/GhidraDocs/GhidraClass/Debugger

image/jpeg
image/jpeg

0xor0ne, to Multicopter

DJI RM500 Smart Controller reverse engineer and exploitation

https://icanhack.nl/blog/dji-rm500-privilege-escalation/

image/jpeg
image/jpeg
image/jpeg

0xor0ne, to Cybersecurity

Sliver C2 framework usage and internals
Excellent series by Alessandro Iandoli

Part 1: https://security.humanativaspa.it/customizing-sliver-part-1/
Part 2: https://security.humanativaspa.it/customizing-sliver-part-2/
Part 3: https://security.humanativaspa.it/customizing-sliver-part-3/

image/jpeg
image/jpeg

0xor0ne, to linux

Useful introduction to Linux namespaces

Part 1: https://blog.quarkslab.com/digging-into-linux-namespaces-part-1.html
Part 2: https://blog.quarkslab.com/digging-into-linux-namespaces-part-2.html

image/jpeg
image/jpeg
image/jpeg

0xor0ne, to linux

Introduction to Linux red teaming basic techniques

Exploitation: https://linode.com/docs/guides/linux-red-team-exploitation-techniques/
Escalation: https://linode.com/docs/guides/linux-red-team-privilege-escalation-techniques/
Persistence: https://linode.com/docs/guides/linux-red-team-persistence-techniques/

image/jpeg
image/jpeg

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • kavyap
  • DreamBathrooms
  • thenastyranch
  • magazineikmin
  • InstantRegret
  • GTA5RPClips
  • Youngstown
  • everett
  • slotface
  • rosin
  • osvaldo12
  • mdbf
  • ngwrru68w68
  • JUstTest
  • cubers
  • modclub
  • normalnudes
  • tester
  • khanakhh
  • Durango
  • ethstaker
  • tacticalgear
  • Leos
  • provamag3
  • anitta
  • cisconetworking
  • lostlight
  • All magazines
    •