Niklas Saari
Niklas Saari
Need to take a better look
Good presentation https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf
Task 2: Might need to rewrite and combine the provided blog posts to give more straightforward instructions. Also add some notes: * Assembly code should be "perfect call" to work...
https://www.theregister.com/2022/05/30/follina_microsoft_office_vulnerability/
Teaching uses? https://arstechnica.com/information-technology/2022/05/how-hackers-used-smarts-and-a-novel-iot-botnet-to-plunder-email-for-months/
https://twitter.com/0xJeremy/status/1517501223938764802 > [Jeremy Blackthorne](https://twitter.com/0xJeremy) From a VR student today on our ROP chain lessons. I'm dying 😂: "This week's been like"
Showcase that vulnerable binary is root owned. Running shell with it changes user id from current user (non-root) to root
Fixes #271 Adds also test for untagged duplicate type extension in OER.
OER/UPER/APER fails to encode Sequence with untagged and optional fields ```rust use rasn::{prelude::*, uper}; #[derive(AsnType, Decode, Encode, Clone, Debug, PartialEq, Eq)] pub struct SequenceOptionals { // #[rasn(tag(explicit(0)))] pub it: Integer,...
Fixes #260 Adds `alphabet_name` function for `StaticPermittedAlphabet` trait for better error messages.