banner
LightNews LightNews
0xor0ne.bsky.social
0xor0ne
@0xor0ne.bsky.social
1.1K followers 20 following 450 posts
| CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | Only My Opinions :) |
Posts Media Videos Starter Packs
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 4h
Collection of blog posts, write-ups, papers and tools related to cybersecurity, reverse engineering and exploitation

github.com/0xor0ne/awes...

#cybersecurity #infosec
GitHub - 0xor0ne/awesome-list: Cybersecurity oriented awesome list
Cybersecurity oriented awesome list. Contribute to 0xor0ne/awesome-list development by creating an account on GitHub.
github.com
4
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 4h
Presentations about getting started with Linux kernel exploitation

"Linux Kernel Exploitation for Beginners" by Kevin Massey:
rvasec.com/slides/2025/...

"Control Flow Hijacking in the Linux Kernel" by Valeriy Yashnikov
pt-phdays.storage.yandexcloud.net/Yashnikov_Va...

#Linux #infosec
1 2
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 1d
Teardown and exploitation of the Nokia Beacon 1 Router

spaceraccoon.dev/nokia-beacon...

#iot #infosec
Hacking the Nokia Beacon 1 Router: UART, Command Injection, and Password Generation with Qiling
The Nokia Beacon 1 proved to be an interesting journey covering the full spectrum of techniques from hardware debug interfaces to firmware extraction and finally both static and dynamic analysis. I wa...
spaceraccoon.dev
1 2
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 1d
Synology TC500 smart camera: Remote code execution (RCE) vulnerability

blog.infosectcbr.com.au/2025/08/01/e...

#infosec #embedded
1 11
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 4d
Excellent blog post on bypassing Ubuntu’s Unprivileged Namespace Restriction

u1f383.github.io/linux/2025/0...

#infosec
3 5
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 5d
Short introduction to Windows heap exploitation

mrt4ntr4.github.io/Windows-Heap...

#infosec
Windows Heap Exploitation - From Heap Overflow to Arbitrary R/W
TLDR I was unable to find some good writeups/blogposts on Windows user mode heap exploitation which inspired me to write an introductory but practical post on Windows heap internals and exploitati
mrt4ntr4.github.io
5 12
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 7d
Fault injection for secure boot bypass and secret extraction targeting RP2350

www.usenix.org/system/files...

#infosec
3 6
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 10d
3-parts series on vulnerability research and exploitation of the SMB3 Linux Kernel Server (ksmbd)

Part 1: blog.doyensec.com/2025/01/07/k...
Part 2: blog.doyensec.com/2025/09/02/k...
Part 3: blog.doyensec.com/2025/10/08/k...

#infosec
2 7
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 14d
Exploiting a libANGLE offset integer underflow read the Chrome WebGPU heap

qriousec.github.io/post/oob-angle

#infosec
1 2
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 15d
Worldline Yomani XR payment terminal reverse-engineering and security analysis

stefan-gloor.ch/yomani-hack

#embedded #infosec
1 1 12
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 16d
Exploiting vulnerabilities in Supermicro BMC (CVE-2025-7937 and CVE-2025-6198)

www.binarly.io/blog/broken-...

Credits Anton Ivanov

#infosec
3
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 16d
Breaking Server SGX via DRAM Bus Interposition

wiretap.fail

#infosec
WireTap: Breaking Server SGX via DRAM Bus Interposition
Breaking Server SGX via DRAM Bus Interposition
wiretap.fail
3
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · 24d
Analysis of GrapheneOS hardened malloc libc allocator

www.synacktiv.com/en/publicati...

Credits Nicolas Stefanski

#infosec
1 10
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Sep 17
Flipping the R/W bit in the page table entry of a mapped file to gain write access

ptr-yudai.hatenablog.com/entry/2025/0...

#Linux #infosec
4 8
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Sep 14
Exploiting CVE-2024-50264, a Linux kernel UAF vulnerability due to a race condition in AF_VSOC sockets

a13xp0p0v.github.io/2025/09/02/k...

#infosec #Linux
1 7
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Sep 12
Reliable Linux system call interception

blog.mggross.com/intercepting...

#cybersecurity #Linux
1 8
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Sep 8
Devirtualizing VMProtect and Themida

nac-l.github.io/2025/01/25/l...

#infosec #reverseengineering
Lifting Binaries, Part 0: Devirtualizing VMProtect and Themida: It’s Just Flattening?
Table Of Contents
nac-l.github.io
1 3
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Sep 6
Practical guide to fuzzing the Binder kernel driver using the Linux Kernel Library (LKL)

androidoffsec.withgoogle.com/posts/binder...

Credits Eugene Rodionov, Gulshan Singh and Zi Fan Tan

#infosec #android
1 1 5
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Aug 30
Reverse engineering and decryption of Synology encrypted archives

www.synacktiv.com/en/publicati...

Credits Théo Fauché

#infosec
1 7
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Aug 29
Two parts series on hacking the Xbox 360 hypervisor

Part 1: icode4.coffee?p=1047
Part 2: icode4.coffee?p=1081

#infosec #xbox
Hacking the Xbox 360 Hypervisor Part 1: System Overview
Diving into the heart of the Xbox 360 security system: the hypervisor. How does it work? Why is it so secure? Find out the answers to these questions and more as I cover the architecture of the Xbox 3...
icode4.coffee
1 8 19
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Aug 17
Exploiting an array-Out-Of-Bounds vulnerability in the Linux network packet scheduler (CVE-2025-37752)

syst3mfailure.io/two-bytes-of...

#infosec #Linux
[CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds
CVE-2025-37752 is an Array-Out-Of-Bounds vulnerability in the Linux network packet scheduler, specifically in the SFQ queuing discipline. An invalid SFQ limit and a series of interactions between SFQ ...
syst3mfailure.io
5 19
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Aug 16
Exploiting Linux kernel from Chrome renderer with MSG_OOB (Google Project Zero)

googleprojectzero.blogspot.com/2025/08/from...

#infosec #chrome
From Chrome renderer code exec to kernel with MSG_OOB
Posted by Jann Horn, Google Project Zero Introduction In early June, I was reviewing a new Linux kernel feature when I learned about the...
googleprojectzero.blogspot.com
3 5
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Aug 15
Security analysis of Sonoff Smart Home IoT devices (CVE-2024-7205 and CVE-2024-7206)

jerinsunny.github.io/blogs/iotsec...

Credits Jerin Sunny and Shakir Zari

#iot #infosec
Hacking Sonoff Smart Home IoT Device
CVE-2024-7206: Firmware extraction and Hardware SSL Pinning Bypass
jerinsunny.github.io
4
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Aug 7
Porting a Mali GPU exploit to Pixel 6 Pro (CVE-2023-48409)

starlabs.sg/blog/2025/06...

#cybersecurity #mobile
2 4
0xor0ne.bsky.social
0xor0ne @0xor0ne.bsky.social · Aug 2
"Challenges and Pitfalls while Emulating Six Current Icelandic Household Routers"

Evaluation of different tools for routers firmware emulation
(FACT, QEMU, EMUX, Qiling, Firmadyne, FAT, FirmAE, Pandawan, and EMBA)

skemman.is/bitstream/19...

#cybersecurity #embedded
3 10