-
Notifications
You must be signed in to change notification settings - Fork 10
/
Copy patharticles.html
111 lines (86 loc) · 2.78 KB
/
articles.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
<!DOCTYPE html>
<html lang="en">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, minimum-scale=1.0, maximum-scale=1.0">
<link rel="stylesheet" type="text/css" href="css/core.css" />
<title>Articles</title>
</head>
<body>
<div class="page">
<div class="container">
<div class="header">
<a href="contact.html" class="header-element">
Contact
</a>
<a href="about.html" class="header-element">
About
</a>
<a href="articles.html" class="header-element">
Articles
</a>
<a href="index.html" class="header-element">
Home
</a>
</div>
<h1>Articles</h1>
<hr>
<h2>Exploit Writeups</h2>
<div class="pad-in">
<h3>PlayStation 2</h3>
<ul>
<li><a href="ps2-yabasic.html">Yabasic</a></li>
<li><a href="freedvdboot.html">FreeDVDBoot</a></li>
</ul>
<br>
<h3>PlayStation 4</h3>
<p>
My jouney of achieving the first public kernel exploit (2015):
</p>
<ul>
<li><a href="ps4.html">Part 1 - Introduction to PS4's security, and userland ROP</a></li>
<li><a href="ps4-2.html">Part 2 - Userland code execution</a></li>
<li><a href="ps4-3.html">Part 3 - Kernel exploitation</a></li>
</ul>
<ul>
<li><a href="dlclose-overflow.html"><code>sys_dynlib_prepare_dlclose</code> kernel exploit</a></li>
</ul>
<br>
<h3>PlayStation 5</h3>
<p>
mast1c0re: Hacking the PS4 / PS5 through the PS2 Emulator (2022):
</p>
<ul>
<li><a href="mast1c0re.html">Part 1 - Escape</a></li>
<li><a href="mast1c0re-2.html">Part 2 - Compiler Attack</a></li>
</ul>
<br>
<h3 id="fbsd">FreeBSD</h3>
<ul>
<li><a href="SETFKEY.html">Analysis of CVE-2016-1886, SETFKEY FreeBSD kernel vulnerability</a></li>
<li><a href="sendmsg.html">Analysis of CVE-2016-1887, sendmsg FreeBSD kernel heap overflow</a></li>
<li><a href="compat-info-leaks.html">Analysis of stack disclosure vulnerabilities in FreeBSD compatibility layers</a></li>
</ul>
<br>
<h3>Nintendo</h3>
<ul>
<li><a href="shogihax.html">shogihax - Remote Code Execution on Nintendo 64 through Morita Shogi 64</a></li>
</ul>
<br>
<h3>Apple</h3>
<ul>
<li><a href="bindValue.html">bindValue - JSC UaF RCE</a></li>
</ul>
<br>
<h3>Web</h3>
<ul>
<li><a href="poker.html">How I hacked an online Poker site!</a></li>
<li><a href="gamecenter.html">Can you use StackOverflow to find bugs at scale?</a></li>
</ul>
</div>
<hr>
</div>
</div>
</body>
</html>