@DraperLab microarchitecture • secure hypervisor development • reverse engineering • security research @the_secret_club

United States
Joined May 2018
If you want to learn reverse engineering but don't know assembly here's part 1 of my x86_64 Assembly crash course - Accelerated Assembly. Part 2 will be released soon, this post was getting increasingly packed! revers.engineering/applied-r…
18
226
7
661
Daax Rynd retweeted
So, those undocumented x86 instructions that we found in Intel CPUs are officially called PATCH2 and PATCH3. If so, what is PATCH1???
0
9
0
46
computer culture used to be “information wants to be free”, now it’s “how can i bring ownership to things you can’t own”
111
8,017
206
58,480
Daax Rynd retweeted
attacker: ah hah I have retrieved the documentation engineer: lol good luck
24
254
12
1,664
Why has CPUID execution time significantly increased on Alder Lake? The average core cycles for leaf 1 on Skylake, Kaby Lake, Tiger Lake, etc., is ~220 cycles. On Alder Lake? 1400+ cycles. I'm curious why there is a massive spike in the number of uops executed. Anyone?
4
1
0
28
@intel @IntelSecurity @tklengyel @0xdbug Maybe can get a less vague answer from one of y’all than “more complex logic” - it only seems to be a whack increase over leaf 1 on Alder Lake P.
2
0
0
1
And Alder Lake S*
0
0
0
0
Daax Rynd retweeted
Secure Boot Security Feature Bypass Vulnerability CVE-2022-21894 msrc.microsoft.com/update-gu…
4
5
2
24
Daax Rynd retweeted
Excited for this new chapter in my life and for the opportunity to serve all Canadians in these, and future, challenging times. I'm proud to be a small variable in a very large equation, hoping to make a change.
Today, CSE welcomes @aionescu as Technical Director, Platform Operations and Research. Alex's world-class operating system expertise will help advance CSE's cyber security interests both at home and abroad, and promote cyber-safe practices for all Canadians. Welcome Alex!
79
27
1
600
Daax Rynd retweeted
andrea-allievi.com/blog/alde… I am a user thread... and I want to send a interrupt to a "victim" thread... without a (full) OS interaction... Is it possible? Introducing User Interrupts...
5
11
2
35
Daax Rynd retweeted
They literally started using the name Pluton again with no shame... It's hilarious to me what the consumers are willing to trade for a fancy (yet unusable) UI from a company that refuses to update its previous generation scheduler just to make people switch. </rant>
0
4
0
31
Daax Rynd retweeted
Inspired by @osxreverser analysis of NSA BPF port-knocking implant, I decided to take a 2nd look at #ShadowBrokers leak of windows implants. Lo and behold, a couple of hardly mentioned kernel drivers (#DoormanGauze and #FlewAvenue) caught my attention. (1/11)
2
105
8
295
Show this thread
Daax Rynd retweeted
MemProcFS and PCILeech PCIe DMA attack updates: PCILeech mount support on Linux. Upgrade to new file system driver (Dokany2) and VS2022 on Windows. github.com/ufrisk/pcileech
0
33
1
124
Daax Rynd retweeted
new intel x86 manual! 253665-076US (dated december 2021) is newly online. it includes a new section on last-branch records.
3
4
0
48
Show this thread
Daax Rynd retweeted
Bcdedit /set {default} hypervisorloadoptions "EARLYKDINIT" this command allowed me to attach windbg to hyper-v successfully after struggling with win11. Incase it helps anyone..
2
19
1
130
Show this thread
If only someone had said something before... secret.club/2021/06/28/windo… cl.cam.ac.uk/~rja14/tcpa-faq… etc, etc. DRM for the masses! Woohoo! I love being told what I can/can't run. @Microsoft, good one - clowns.
YES, this is EXACTLY what we want on the PC! "Xbox-like security" We just want to keep everyone safe out there ok, trust us we have your best interests at heart. 🤡 theverge.com/2022/1/4/228666…
1
0
0
17
Daax Rynd retweeted
YES, this is EXACTLY what we want on the PC! "Xbox-like security" We just want to keep everyone safe out there ok, trust us we have your best interests at heart. 🤡 theverge.com/2022/1/4/228666…
5
11
4
53
Daax Rynd retweeted
hyperv bugzz bounties fuzzing and bananas, something in between those lines => rezer0dai.github.io/biug-bou…
1
81
3
214