Azeria
Founder of Azeria Labs, Trainer, Author of Blue Fox: Arm Assembly Internals & Reverse Engineering
- I can’t believe it, I finally got my O1A visa!! It also means I can finally accept training requests again and deliver onsite trainings in the US. First stop: @re-verse.io. Hope to see some of you at the conference today!
- [Not loaded yet]
- Nothing new— you need a work permit to work in the US. Remote trainings are fine, but you need a visa for onsite trainings.
- Just read 50 pages of @azeria-labs.com 's Blue Fox book and so far, this has been the only book that has been THIS engaging. I love how the book goes back to the old times to make you feel WHY computer scientists did what they did back in the days. Awesome book. My current fav 💙
- [Not loaded yet]
- I’ll be doing an interplay between the analyst / defender (blue fox) and the hacker (red fox) to illustrate the cat and mouse game between the two fronts when it comes to exploit mitigations and their bypasses. Planning to finish it this year so stay tuned! 😄
- Thank you so much, Xylo! Your feedback means a lot. 🥹 I’m currently writing the Red Fox edition and want to make it even more engaging than Blue Fox. :>
- [Not loaded yet]
- Congratulations, Amit!
- The Chinese translation of my book is out and just arrived in the mail! How cool is that?! Still can’t believe this is real 🩵
- [Not loaded yet]
- Thank you :)
- [Not loaded yet]
- Whoever is reading this stuff in Chinese is on a different level haha
- The German magazine Der Spiegel published a profile on me! What an incredible honor. Thank you to @kschroeder.bsky.social for his effort to bring Hacker career stories to the German mainstream media. I hope this will inspire some youngsters. www.spiegel.de/start/maria-...
- Killer lineup! Can’t wait to attend. If you are into reverse engineering, check out the new Re-Verse conference, launching in February! The team behind it is incredible. This is going to be the new Infiltrate.
- Our 2025 RE//verse talk schedule is now live! Talks start Friday, but don't forget to check the Thursday schedule and arrive early enough for the kick-off event! re-verse.io/schedule.html#sz-ta…
- Just got the physical copy in the mail! So exciting!!
- In other news, my book has been translated into Korean! 🤩 Absolutely blown away by that. It’s also being the translated into Polish and Chinese. Here’s the link to the Korean translation of “Blue Fox: Arm Assembly Internals and Reverse Engineering”: product.kyobobook.co.kr/detail/S0002...
- [Not loaded yet]
- Thank you, Filipe!
- [Not loaded yet]
- Thanks so much Jon 🥹
- In other news, my book has been translated into Korean! 🤩 Absolutely blown away by that. It’s also being the translated into Polish and Chinese. Here’s the link to the Korean translation of “Blue Fox: Arm Assembly Internals and Reverse Engineering”: product.kyobobook.co.kr/detail/S0002...
- [Not loaded yet]
- Thanks so much! The Red Fox book is still in the writing stage and not out yet. I’ll be posting about it as soon as I have an update on the release date. :)
- [Not loaded yet]
- Yes, currently writing it. :)
- Updated my username with my domain. Hope this avoids any confusion in the future. Thanks to everyone who reported the fake account! Also, here are some red flags suggesting that I’m being impersonated: - advertises cryptocurrency - DMs unsolicited links - hypes Intel processors
- The following account is a fake account impersonating me and sending scams over DMs. Please block and report it. @foxox01.bsky.social
- The following account is a fake account impersonating me and sending scams over DMs. Please block and report it. @foxox01.bsky.social
- I’m going to change my Bluesky domain to azeria labs soon so there’s less confusion
- Wow. People are really flocking to Bluesky. The influx of new followers within a week is crazy.
- [Not loaded yet]
- Been off the socials for a while (more or less), but planning to post more and publish more content next year. I miss the community. Twitter hasn’t been the same since Elon took over…
- [Not loaded yet]
- Nice, thank you!
- [Not loaded yet]
- I got on when it came out and while it was still invite only. Just haven’t been active yet 😬
- If we follow each other on Twitter, please shoot me a DM. Trying to refollow folks on here
- Time for an Arm-twist! CVE-2023-4039 Tom Hebb (Meta red team) and I discovered an 0day in GCC (for AArch64 targets) during my Arm exploitation training. It renders stack canaries against overflows of dynamically-sized variables useless. developer.arm.com/Arm%20Securi...
-
View full threadIf you want to reproduce this bug with the PoC from the advisory on your x86/64 machine, here’s how:
- Check out Tom’s great write-up for more details: rtx.meta.security/mitigation/2...
- The issue: When targeting AArch64, this mitigation didn’t protect saved registers from overflows in C99-style dynamically allocated local variables and alloca() objects.
- Impact: Basically, any AArch64 software compiled with GCC & the stack protection feature (flag -fstack-protector) that is vulnerable to buffer overflows via dynamically-sized variables can be exploited without bypassing this exploit mitigation.
- CVE-2023-4039: “GCC's -fstack-protector fails to guard dynamic stack allocations on ARM64” On AArch64 targets, GCC's stack smashing protection does not detect or defend against overflows of dynamically-sized local variables. Affecting all versions of GCC for AArch64 targets.
- > GCC’s stack protection feature (aka canary) is an exploit mitigation to prevent buffer overflows from overwriting saved registers on the stack to take control over the program flow. It makes exploitation much harder. You often need an additional bug to bypass this mitigation.
- I’m doing two book signing sessions in collaboration with Patrick Wardle at Black Hat and Defcon this year! 🥳 Black Hat: Thursday 8/10 - 12:15pm: BH Bookstore - Breakers Registration 2 Defcon: Saturday 8/12 - 11:00am Caesar’s - Alliance Ballroom - Room 321
- I've been so twitter-disconnected I totally missed this until I just looked at the schedule now, looking forward to this! And of course I didn't bring my copy of the Arm RE book here, hoping BH bookstore is stocking a copy I can get signed.
- Thanks Colin! I’ll be doing a book signing at the BH book store on Thursday. Will post details over the weekend :)
- I can’t believe I’ll be keynoting Black Hat this year 😵
- Does anyone here know someone who works on AI safety research?
- [Not loaded yet]
- Yes, that’s perfect. Thanks! (For context: I’m looking for people to reach out to)
- [Not loaded yet]
- I’m embarrassed to report that (as a German) I haven’t visited the German spy museum yet. Only the one in DC 😅
- All the lovely people who posted a photo of their copy of my book. I’m humbled. 🥰
- [Not loaded yet]
- Thank you so much 🥹
- How long does it usually take to get invite codes assigned?
