How I Built a Car In a Box In this article, we'll see how to put an entire car into a transpo... 2024-2-22 07:0:0 | 阅读: 14 | 收藏 | Quarkslab's blog - blog.quarkslab.com ecus ecu vagbox ivi cars

PHP deserialization attacks and a new gadget chain in Laravel Discovery of a new gadget chain in Laravel. IntroductionWithout pretension this article r... 2024-2-13 07:0:0 | 阅读: 18 | 收藏 | Quarkslab's blog - blog.quarkslab.com php username unserialize destruct serialized

DJI - The ART of obfuscation Study of an Android runtime (ART) hijacking mechanism for bytecodeinjection through a step-b... 2024-2-6 07:0:0 | 阅读: 22 | 收藏 | Quarkslab's blog - blog.quarkslab.com analysis packer bytecode w0

PixieFail: Nine vulnerabilities in Tianocore's EDK II IPv6 network stack. This blog post provides details about nine vulnerabilities affecting the IPv6 network protoco... 2024-1-16 07:0:0 | 阅读: 30 | 收藏 | Quarkslab's blog - blog.quarkslab.com quarkslab tianocore dhcp6 dhcpv6

Blue Galaxy Energy: a new White-box Cryptanalysis Open Source Tool We introduce a new white-box cryptanalysis tool based on the pioneering BGE paper but without... 2023-12-21 07:0:0 | 阅读: 16 | 收藏 | Quarkslab's blog - blog.quarkslab.com bge rounds encodings nosuchcon dfa

Our Pwn2Own journey against time and randomness (part 2) Part 2 of a series about participation in the Pwn2Own Toronto 2023 contest. This blogpost... 2023-11-7 07:0:0 | 阅读: 17 | 收藏 | Quarkslab's blog - blog.quarkslab.com netgear quarkslab firmware itb psirt

Workflow of a zkSync Era transaction: from generation to finalization This blog post presents the entire workflow of a transaction executed on zkSync Era. zkSync E... 2023-10-26 06:0:0 | 阅读: 11 | 收藏 | Quarkslab's blog - blog.quarkslab.com zksync l2 alice era diamond

Internship Offers for the 2023-2024 Season The internship season is back at Quarkslab! Our internship topics cover a wide range of our e... 2023-10-16 06:0:0 | 阅读: 29 | 收藏 | Quarkslab's blog - blog.quarkslab.com internship assignment gvisor quarkslab python

QBinDiff: A modular diffing toolkit This blog post presents an overview of QBinDiff, the Quarkslab binary diffing tool officially... 2023-10-12 06:0:0 | 阅读: 48 | 收藏 | Quarkslab's blog - blog.quarkslab.com qbindiff similarity binexport diffing secondary

Let’s Go into the rabbit hole (part 1) — the challenges of dynamically hooking Golang programs Golang is the most used programming language for developing cloud technologies. Tools such as... 2023-10-3 06:0:0 | 阅读: 21 | 收藏 | Quarkslab's blog - blog.quarkslab.com trampoline hooking toupper loaded

Reversing Windows Container, episode I: Silo This article presents the internals of Windows Container. IntroductionThis article is the... 2023-9-21 06:0:0 | 阅读: 18 | 收藏 | Quarkslab's blog - blog.quarkslab.com mkkey windows silo containers

Debugging Windows Isolated User Mode (IUM) Processes In this blog post we discuss how to debug Windows' Isolated User Mode (IUM) processes, also k... 2023-9-7 06:0:0 | 阅读: 14 | 收藏 | Quarkslab's blog - blog.quarkslab.com hvcall memory ium hypercall

Diving into Starlink's User Terminal Firmware This blog post presents an overview of Starlink's User Terminal runtime internals, focusing o... 2023-8-29 06:0:0 | 阅读: 42 | 收藏 | Quarkslab's blog - blog.quarkslab.com dish frontend processes software memory

Breaking Secure Boot on the Silicon Labs Gecko platform In this blog post, we present a new vulnerability on the Gecko Bootloaderfrom Silicon Labs m... 2023-8-21 06:0:0 | 阅读: 17 | 收藏 | Quarkslab's blog - blog.quarkslab.com gbl bootloader mutate firmware silicon

Android Data Encryption in depth Join us in our journey into modern Android's Data Encryption at rest, in which we study how i... 2023-8-14 06:0:0 | 阅读: 26 | 收藏 | Quarkslab's blog - blog.quarkslab.com weaver security chip encryption

For Science! - Using an Unimpressive Bug in EDK II to Do Some Fun Exploitation In this blog post we'll see a technique to gain code execution in SMM from a very limited wri... 2023-6-23 06:0:0 | 阅读: 21 | 收藏 | Quarkslab's blog - blog.quarkslab.com nvs smm efi smram smi

Security audit of Mithril Security BlindAI Mithril Security engaged a collaboration with Quarkslab to perform an audit of the Blind... 2023-6-13 06:0:0 | 阅读: 19 | 收藏 | Quarkslab's blog - blog.quarkslab.com blindai security mithril enclave sgx

PASTIS For The Win! In this blog post we present PASTIS, a Python framework for ensemble fuzzing, developed at Qu... 2023-5-17 06:0:0 | 阅读: 18 | 收藏 | Quarkslab's blog - blog.quarkslab.com pastis broker fsm dse software

Introducing TritonDSE: A framework for dynamic symbolic execution in Python We present TritonDSE, a new tool by Quarkslab. TritonDSE is a Python library, built on top of... 2023-5-2 06:0:0 | 阅读: 23 | 收藏 | Quarkslab's blog - blog.quarkslab.com tritondse exploration dse symbolic python

Android greybox fuzzing with AFL++ Frida mode This article is about greybox fuzzing of userland targets that can be encountered in Android... 2023-4-27 06:0:0 | 阅读: 42 | 收藏 | Quarkslab's blog - blog.quarkslab.com jni qb blogfuzz fuzzer