nedwill (@NedWilliamson) / X

nedwill

693 posts

nedwill

@NedWilliamson

supporting the humans in the loop; PPP for life

Joined January 2012

Pinned
nedwill
@NedWilliamson
Mar 28
I was honored to serve as an invited expert at the DARPA ISAT CLASH workshop on AI-enabled cybersecurity earlier this month. Nearly 10 years after participating in CGC, it's a thrill to see the vision extending another decade ahead. Grateful to LTC Chase Hasbrouck for leading
GitHub - nedwill/clash_public
From github.com
12K
nedwill
@NedWilliamson
Jul 11, 2019
My iOS 12.2 exploit is now available! Thanks again to Brandon for his help in getting through the Mach trenches from BSD. bugs.chromium.org/p/project-zero…
nedwill
@NedWilliamson
Apr 22, 2021
My fuzzer for the iOS kernel networking stack is now open source! You can read the implementation details here:
Designing sockfuzzer, a network syscall fuzzer for XNU
From projectzero.google
nedwill
@NedWilliamson
Jun 28, 2019
I managed to get kernel_task port using only CVE-2019-8605 for iOS 12.2 (tested on iPhone 6s+) :) Still needs quite a bit of work for stability. Huge thanks to @_bazad for his assistance in achieving a goal I have had for over a decade...
nedwill
@NedWilliamson
Jun 15, 2022
CVE-2022-26757 is my first report using a new technique to find race conditions deterministically. The featured protobuf testcase repros 100% of the time on my internal SockFuzzer branch. I will discuss and open source this technique at Black Hat 2022! bugs.chromium.org/p/project-zero…
nedwill
@NedWilliamson
Jul 20, 2019
I got almost 100% reliability for iPhone 5s w/ 12.2. Several changes to Sock Puppet were necessary. Just doing some final improvements. My changes will make the exploit faster and more reliable on all devices, even those already working.
nedwill
@NedWilliamson
Apr 8, 2019
My first blog post! tl;dr starting with VirtualBox
nedwill.github.io
Picking a Target
Last week I announced that I’m planning to do a video/blog series showing how to find and exploit vulnerabilities. I hope that by trying this from scratch on a target I’ve never properly attempted...
nedwill
@NedWilliamson
Nov 25, 2020
Activision banned me for attempting security research on Call of Duty Warzone's netcode!
nedwill.github.io
Getting Banned for Security Research
Note that this post does not reflect the opinions of my employer nor my colleagues, and I conducted this research on my own time.
nedwill
@NedWilliamson
Dec 10, 2019
Learn how found and exploited SockPuppet for iOS 12.4, featuring a bonus collaboration with LiveOverflow! googleprojectzero.blogspot.com/2019/12/sockpu… youtube.com/watch?v=YV3jew…
nedwill
@NedWilliamson
May 16, 2019
When I reported CVE-2019-8605 I could only repro it on macOS with root user. I've found a way to reach it from the app sandbox on iOS. Don't update to 12.3 needlessly while I continue to investigate!
nedwill
@NedWilliamson
Oct 3, 2024
github.com/googleprojectz… SockFuzzer v3 is out. It's probably time to share that my last day at Project Zero will be tomorrow and I'll be taking some time off before starting a new role. I hope everyone has had a wonderful summer and my sincere appreciation goes to the Project
32K
nedwill
@NedWilliamson
Jan 29, 2020
Excited to start the new year with CVE-2020-3842 :) It's a fun one and unlike the other bugs I reported so far so I'm looking forward to (responsibly) disclosing it.
support.apple.com
About the security content of iOS 13.3.1 and iPadOS 13.3.1 - Apple Support
This document describes the security content of iOS 13.3.1 and iPadOS 13.3.1.
nedwill
@NedWilliamson
Jan 11, 2021
Hi, can anyone help me get in touch with Activision's product security team? I'd like to report a vulnerability in Call of Duty Warzone.
nedwill
@NedWilliamson
Oct 25, 2022
A couple months overdue, here's the open source release of Concurrence, my new fuzzing library for thread-based targets. Integration code to SockFuzzer, plus Mach process/IPC/VM/etc. support are coming soon. Check it out at github.com/googleprojectz…