 |
Post AeZ99je3twzCuamIlM by [email protected] |
 |
More posts by [email protected] |
|
Post #AeYUhdHNymHQtUDTKS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
security budget:- $1 looking into languages that don’t trivially buffer overf… |
|
|
|
Post #AeYUvw9abO5FUAOGp6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
don’t worry i know red teams are “insider threats” i made sure to give th… |
|
|
|
Post #AeYdTPullu3IydvyOO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ktemkin sorry what is compile-time diversity? Tried searching it but don’t s… |
|
|
|
Post #AeYdTPzNUljrCw5eZk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@yazad3 it’s when you change things about the program’s memory layout (like… |
|
|
|
Post #AeYdcPl9iXur6PjAsS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ktemkin I can see from this budget that 'never paying to fix "../&quo… |
|
|
|
Post #AeYdcPpPSjJpJbiZVY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@da_667 I don’t even have the budget to enclose shell variables in quotes; th… |
|
|
|
Post #AeYeE4eUdv0EdvZKAi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ktemkin companies with such bad priorities and planning kinda deserve to die.I… |
|
|
|
Post #AeYeE4ikO6PCr7Yino by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@OS1337 it’d be one thing if the management were the ones to suffer, but too … |
|
|
|
Post #AeYfTubVrw8y4DI5Xk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
other small business owners: image is everything; make sure people know you’r… |
|
|
|
Post #AeYfWYQAniWE8XFLdY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
rainbow tables? we don’t have to worry about those until pride month |
|
|
|
Post #AeYgEtzJyd2dlbpjZw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ktemkin @yazad3 ooh, I knew of this practice but it's the first time I'… |
|
|
|
Post #AeZ3MQNqEAPLDErI9o by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ktemkin @yazad3 wouldnt it make more sense to let the kernel do that randomisa… |
|
|
|
Post #AeZ3MQS5yLoJQQqgmu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@yazad3 @trdebunked this is actually a separate subfield called “run-time div… |
|
|
|
Post #AeZ3MRX5xFP6mECCDg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@yazad3 @trdebunked - If we tag the binary with metadata indicating what can be… |
|
|
|
Post #AeZ3MRsieqhXrIJSvQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@yazad3 @trdebunked A more interesting approach is to mix compile and runtime d… |
|
|
|
Post #AeZ3MSELMRzywMQjdA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@yazad3 @trdebunked You could probably mock up a hack’y version of this with … |
|
|
|
Post #AeZ3RWyHA7JV5kKqoq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@yazad3 @trdebunked (last I checked, the actual exploratory research about this… |
|
|
|
Post #AeZ99jaA8RroiUxBgW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] what's compile-time diversity? |
|
|
|
Post #AeZ99je3twzCuamIlM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@natty https://chaos.social/@ktemkin/111876437221851105 |
|
|
|
Post #AeZC1Zw2Q2p0LHzLZg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ktemkin so this is kind of ASLR, just one level lower (within a single process… |
|
|
|
Post #AeZC1a0IAEDyYTykCm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jkmcnk @yazad3 if you’re only changing layout, this becomes exactly like ASL… |
