Pwn2Own Berlin 2025: Day Three Results

May 17, 2025 | Dustin Childs CONTINUE READING

Inverting Your Assumptions: A Guide to JIT Comparisons

Blog post

Inverting Your Assumptions: A Guide to JIT Comparisons

April 12, 2018
Webkit, JavaScript, Research

Tales from HallwayCon – Busting Myths Over Adult Beverages

Blog post

Tales from HallwayCon – Busting Myths Over Adult Beverages

March 29, 2018
Pwn2Own, Research, Techniques

Testing for Truthiness: Exploiting Improper Checks

Blog post

Testing for Truthiness: Exploiting Improper Checks

March 09, 2018
Microsoft, Pwn2Own, Research

VMware Exploitation through Uninitialized Buffers

Blog post

VMware Exploitation through Uninitialized Buffers

March 01, 2018
VMware, Exploit, Research, Pwn2Own

Pushing WebKit's Buttons with a Mobile Pwn2Own Exploit

Blog post

Pushing WebKit's Buttons with a Mobile Pwn2Own Exploit

February 12, 2018
Apple, Research, Exploit, MP2O, Pwn2Own

One man's patch is another man's treasure: A tale of a failed HPE patch

Blog post

One man's patch is another man's treasure: A tale of a failed HPE patch

February 06, 2018
HPE, Research, Metasploit

Automating VMware RPC Request Sniffing

Blog post

Automating VMware RPC Request Sniffing

January 19, 2018
VMware, Research

A Matching Pair of Use-After-Free Bugs in Chakra asm.js

Blog post

A Matching Pair of Use-After-Free Bugs in Chakra asm.js

December 22, 2017
JavaScript, Chakra, Research, Top 5

VMware’s Launch escape SYSTEM

Blog post

VMware’s Launch escape SYSTEM

December 21, 2017
VMware, Research, Top 5

Invariantly Exploitable Input: An Apple Safari Bug Worth Revisiting

Blog post

Invariantly Exploitable Input: An Apple Safari Bug Worth Revisiting

December 20, 2017
Apple, Safari, Research, Top 5