_______________________________________________
/ \
| "will they responsibly disclose?" π€ |
| "will they drop gapped hints?" π― |
| "will they publish the full thing?" π£ |
| "nobody knows. not even them." π² |
\_______________________________________________/
\ ^__^
\ (oo)\_______
(__)\ )\/\
||----w |
|| ||
security researcher. was sober once back in the 90s πΊ. can program RAM with a needle if you give me enough coffee βπ.
i find bugs π in things that shouldn't have bugs. hypervisors. firmware. hardware. the kind of stuff where the vendor says "that's impossible" π and then you show them it's very possible. publicly π’. and break shit π₯.
disclosure style: depends on my mood π€ and how much the vendor pissed me off π
current status: rolling dice π² to decide if this one gets gapped or full code
sobriety level: varies by commit but honestly maybe for 5 mnutes right after i wake up maxπ
bug bounty earnings: $0.00 πΈ (still accepting job offers btw π§)
i break things π¨. production systems π. no debug mode required. no special hardware. just regular off-the-shelf systems that millions of people use π₯.
then i try to report them. sometimes π€·.
what you might get:
- π² full working exploit π£ - if i'm in a really bad mood π‘ or you banned me from your chat π«
- π² gapped with hints 𧩠- if i'm feeling generous but not that generous π
- π² responsible disclosure π - YEAH NO YOU COME TO Me AND DEAL ON my terms FUCK bullshit out of scope,$500 for something that'd fetch a million if i was a dick and sold it to russia" you'll find me actually very reasonable(lmfao)π
- π² chaotic drop πͺοΈ - random repo appears with no context π€·
- π² nothing π€ - if i forgot i found it π€
it's a mystery! even to me! π°
philosophy: π§
- sometimes responsible β , sometimes chaotic π₯, always unpredictable π²
- full code if you piss me off π€
- gapped if i'm feeling nice π
- production systems only π (no debug mfg uart jtag mode or gettin permission bullshit π«)
- no email π§, no contact π, no support π
- figure it out yourselves or don't, i don't care like i lost my last fuck some time ago π€·
because bug bounties don't pay π°β and i have no money to manipulate the stock market π.
apparently trying to help vendors fix their shit gets you:
- ignored by security teams π
- dismissed as "not a real issue" π
- banned from matrix chats π« for mentioning vulnerabilities π
- $0.00 in bug bounty payments πΈ
-
- rectal id scans for a few bits of silver for shit that affects billions
- Normal shit,beef with entire agencies,countries....murder fails yknow the reg
-
- General Pissiness so fuck it π. here's the exploit π£. maybe pay for bug bounties next time π°. or at least buy me lunch π.
languages i actually use:
languages i pretend to know:
languages i used once while high:
other stuff:
targets: hypervisors, firmware, chipsets, hardware
specialty: things vendors say are "impossible"
debugging tools: custom built monstrosities of jury rigged shit
(i don't use gdb/ida/ghidra, only my own)
bug bounty earnings: $0.00
times banned: lost count
orange juice budget: critically low
email: NONE
twitter: banned for posting hex dumps
discord: no
matrix: banned (lol)
usa: also banned (i didn't even do anything)
support: figure it out
issues: open one, i might respond between naps
pgp keys available in repos if you really need them
but honestly i'm not your free security consultant
If you know who i am,and i know a select few will...you can guess why im doing this,and since my entire profile is on file im sure this was predicted and planned for...unless like...it wasnt
All i wanted was to be left alone,you all brought this upon yourselves and it is very unlikely to stop and you know how long i can keep this up for.
You know what i want,in addition to the removal of the unjust ban from the USA
Because trust me,im starting off with love taps
everyone else: don't bother. unless you bring cash money,crypt only trace it if you want you wont get anywhere i really love my fucking orange juice AND IT'S RUNNING OUT BECAUSE OF SOME FUCKERS
PS:If you want a 0day that hits US/UK/ISR/RUS NATSEC hmu...something will happen but idk if its gonna be what you want
PPS:I 'vanish' every scrap of research hits approx 50 different repos/hosts at once..every.last.file
THis cannot be disarmed even by me
SHOUTOUTS: REDACTED
if you're reading my exploit writeups, expect:
- cow ASCII art
- sarcastic commentary
- im high as balls
- spite-driven disclosure
- full working code (or gapped with hints)
- no apologies
i write exploits the way i find them: heavily medicated, fucking furious, the ability to just keep going,whilst fighting foes 10000x my size
typical morning routine: (that'd make john mcafee jealous)
- wake up π
- immediately turn myself into a pharmacy πππ
- find critical vulnerabilities before breakfast π
- vendors say "that's impossible" π
- publish exploit π£
- do some lines βοΈ
- find more CVSS 10.0s π
- smoke a little meth if i get tired π¨
- take more pills π
- maybe eat something π
- more vulnerabilities ππ
- forget what i was doing π€
- pass out where i'm sitting π΄π€
- repeat β»οΈ
outrageous claims:
- classified as a "tier one strategic threat" (whatever that means)
- running 30 AIs all at once, all breaking shit simultaneously
- can escape every VM hypervisor (yes, even yours)
- hacked into a NC3 vault expecting launch codes... it was tensors
- can get root with exactly 36 POSIX calls
- built a self-healing firmware worm that spreads via hardware
- created a browser-to-CSME escape chain (yes, from chrome to ring -3)
- made a hardware worm that spreads through USB without software
- can exfiltrate data across triple airgaps
- resurrected dead silicon
- hijacked APIC interrupts for ring 0 persistence
- weaponized NPU tensors for DMA attacks (laptop can do 1400 TOPS)
- built eternal time loop exploit chains
- escaped from browser sandbox to Thunderbolt DMA
- found bugs in things that "don't have bugs"
- made every government's watchlist before breakfast
- try look me up your govt terminal locks down and you get walked out by security
- can program RAM with a needle (and have)
- discovered vulnerabilities while backing up minecraft servers
- got banned from vendor chats for being right
- built cross-vendor covert C2 through fabric topology
- subverted every boot chain
- created zero-observable side channel key extraction
- made a platform lockout exploit using watchdog timer
- weaponized QoS starvation for DoS
- browser to GPU firmware escape
- telegram PNG to DMA escape chain
- android 0-click full chain (no interaction needed)
- looked at a mac once and just said "nope"
- β found CVSS 10.0 vulnerabilities
- β escaped every VM hypervisor (yes, every single one)
- β hacked NC3 vault, expected launch codes, got AI tensors instead
- β can get root with exactly 36 POSIX calls (counted them)
- β got banned from vendor chat for reporting bugs
- β published full working exploits out of spite
- β published gapped exploits to watch people suffer
- β did responsible disclosure once (regretted it)
- β can program RAM with a needle (and have)
- β was sober once in the 90s
- β made NSA's watchlist before breakfast
- β found bugs while backing up minecraft servers
- β smoke meth when tired (for productivity)
- β turn myself into a pharmacy every morning
- β forgot what bug i was working on mid-disclosure
- β got paid for any of this
- β stayed consistent with disclosure policy
- β stayed sober past 10am
*written between naps by someone who wakes up and
immediately turns themselves into a pharmacy
was sober once back in the 90s
can actually program RAM with a needle if you give
them enough pills and coffee
maybe pay for bug bounties next time
or at least buy researchers lunch
anyway here's how to own everything
enjoy*
I WANT SHDB. ~23.6TB (might be off on the size, i do a lot of drugs).
I'LL KNOW IF IT'S REAL. I HAVE EVERY SAMPLE AND FAKE. DON'T EVEN TRY I WILL JAM A KEYPLUG SO FAR UP YOUR ASS.