Brandon Falk (@gamozolabs) / X

Brandon Falk

5,053 posts

Brandon Falk

@gamozolabs

I find and exploit 0day, develop OSes, hypervisors and emulators, design massively parallel data structures and code, and do precision machining! Optimization❤️

Seattle, WA

Joined August 2014

Pinned
Brandon Falk
@gamozolabs
Nov 17, 2020
We did it, we used our exploit to snapshot a running Android device, and then brought it into QEMU where we can single step it, apply full symbols (since we build a binary identical to the release build), and of course... fuzz it in the future :)
Brandon Falk
@gamozolabs
Sep 28, 2024
I'm dropping a 10.0 CVSS Linux vulnerability in all Linuxes next week. Make sure your turn off your internet facing telnet servers
212K
Brandon Falk
@gamozolabs
Apr 20, 2019
Feeling down? iOS jailbreak you've been working on for a year got patched? Fuzzer not finding any bugs? Miss the 90s where everything crashed? Change your time format on Windows to 90 characters! Watch everything fall over as they get 90 character formats from Windows APIs!
Brandon Falk
@gamozolabs
Jul 12, 2020
You are invited to Fuzz Week 2020! The week where I demonstrate some of the basics of fuzzers, all the way to my thoughts about cutting edge fuzzing. We'll write some of our own basic fuzzers, learn how to use AFL, read some papers, rant a lot, and more!
gamozolabs.github.io
Fuzz Week 2020
Summary
Brandon Falk
@gamozolabs
Aug 19, 2019
Sushi Roll: A CPU research kernel with minimal noise for cycle-by-cycle micro-architectural introspection
gamozolabs.github.io
Sushi Roll: A CPU research kernel with minimal noise for cycle-by-cycle micro-architectural...
Twitter
Brandon Falk
@gamozolabs
Dec 7, 2020
FuzzOS
gamozolabs.github.io
FuzzOS
Summary
Brandon Falk
@gamozolabs
May 24, 2021
Tell me fun hacking/RE/low-level beginner projects. Go! My suggestion: Write a Windows DLL injector (something that injects a DLL into a foreign process so that you can add your own sauce to it)
Brandon Falk
@gamozolabs
Jul 29, 2020
What's it like to be inside AFL? We wrote a tool to find out! Much much more to come, but it generates random programs which report real-time information over shared memory, then over websockets to a visualization! github.com/gamozolabs/coo…
00:00
Brandon Falk
@gamozolabs
May 15, 2022
High-performance QEMU tracing of all PCs and memory accesses (read/write + addr + size + value read/written). Capable of doing about 2 x86 cycles/MIPS instruction with full tracing. Here's a cool demo video of watching all memory accesses in real-time! youtube.com/watch?v=dYyjc2…
Brandon Falk
@gamozolabs
May 20, 2020
Wooo! My first paper!
Marcel Böhme👨‍🔬
@mboehme_
May 20, 2020
Definitely in my⚡Top3 best papers! My fuzzing conjecture 2020 has just been accepted @FSEconf (2xAccept, 1xAward Quality). Turns out there is no sudden road block; more like a frontier that is exponentially harder to push. 📄: mboehme.github.io/paper/FSE20.Em… Collab w/ @gamozolabs!
Brandon Falk
@gamozolabs
Feb 25, 2022
It finally came. Will be doing some reverse engineering and hacking streams in a few weeks! 🧙‍♂️
Brandon Falk
@gamozolabs
Jul 19, 2020
Fuzz week day 1 is up on YouTube. All the others have uploaded and are pending processing by YouTube (probably ~12 hours). youtube.com/watch?v=2xXt_q…
Brandon Falk
@gamozolabs
Mar 11, 2019
I'm excited to start a new Software Metrology team at Microsoft. Our focus is to develop and open source multiple tools for fuzzing, debugging, and reproducing bugs. I'm lucky to start off the team with a great group of people, providing for a great internal group and community!
Brandon Falk
@gamozolabs
Nov 22, 2019
Introducing the fzero fuzzer! A target-architecture-agnostic grammar-based fuzzer (inspired by F1). With no input size constraints, multi-thread support, and all Rust code for no corruption bugs. 5x faster than the worlds fastest grammar-based fuzzer ;D
GitHub - gamozolabs/fzero_fuzzer: A fast Rust-based safe and thead-friendly grammar-based fuzz...
From github.com