qwerty
255 posts
qwerty
@_qwerty_po
@POSTECH_PLUS 20 Pwn | Pwnie Awards '25, Pwn2Own Berlin '25, kernelCTF | DEF CON CTF 32-33
Joined November 2020
- If you are interested in the latest Linux kernel exploit method, it's worth a look!I just released our kernelCTF VSock 0-day write-up with @_qwerty_po . (exp196/exp197, CVE-2024-50264) github.com/google/securitβ¦ We made history by being the first to exploit VSock in kernelCTF, expanding its known attack vectors. π₯³ Itβs a pretty *simple* race condition, right?
- Google kernelCTF LTS/COS 0-day WIN! Successfully exploited an extremely complex race condition 0-day vuln on two instances without using namespaces π work with @_qwerty_po
- Thank you for listening!Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel by Mingi Cho & Wongi Lee #HEXACON2024
- Exploit mitigation kernel but IDK it is legal(using Slab OOB). I thought it could bypass protections similarly at UAF. However.... anyway exploited?
- See you at Hexacon!"Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel" π© π π© by Mingi Cho & Wongi Lee"
- A rather late DEF CON review. This was my first time competing in the DEF CON finals. It had always been my dream to compete as a team with my college club PLUS and CTF friends, and Iβm so happy that it came true this year. Big thanks to the Cold Fusion team for their hard work!
- Thank you to all the participants who enthusiastically participated in the Dreamhack Invitational Final and to all the management staff who worked hard! (especially to those who solved the pop rdi, msg_msg, and serendipity problems I made!)μ§κΈ .HACK Conference 2024μμ (@dothack_io) Dreamhack Invitational Finalμ΄ μ§ν μ€μ λλ€ π₯ #λλ¦Όν΅ #Dreamhack #dothack2024 #λ·ν΅2024 #CTF
- Participated in RICERCA CTF 2023, ranked 12th overall / 1st individual. Thank you to all the staff who prepared the fun problems! I'll post a writeup soon! #RicercaCTF
- It was the best linux kernel debugging plugin I've ever used. It really helped me a lot when exploiting kernel!To pwners and reversers: Have you tried my GEF fork? Features: - Kernel commands (without "vmlinux with symbols"; for qemu-system) - More architectures support (for qemu-user) - Minor heap allocator dumper And many more! Bugs? Please report them:) Enjoy! github.com/bata24/gef
- I am overjoyed to have the opportunity to participate in DEF CON finals for the first time since I start CTF, also with PLUS(@POSTECH_PLUS), my university club! Thank you for the Cold Fusion members who worked together to advance DEF CON finals, and see you all at there!
