@screaminggoat@infosec.exchange @cR0w @wdormann @obivan
If it's a modern widely used app and the memory corruption exploit pops calc but doesn't have rop chains, it's most likely a dud
@ciaranmak @screaminggoat @cR0w @obivan Yeah, the lack of ROP and ASLR bypass combined with the handle screams fake.But I figured I'd at least attach a debugger to confirm that it wasn't merely an unfinished exploit.
@wdormann @screaminggoat@infosec.exchange @cR0w @obivan
For extra legitimacy they can ask their genAI to add in a realistic looking rop gadget chain
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.