Explore
NVD delays highlight vulnerability management woes: Put malware first
A decision by the National Institute of Standards and Technology (NIST) to change how it maintains...
Are batch scripts a security vulnerability? - Chris Denton
Context: I’m the author of the Rust patch Comments
C isn’t a Hangover; Rust isn’t a Hangover Cure
A few weeks ago, I got a bit miffed reading yet another article that was too...
Secure Boot & TPM-backed Full Disk Encryption on NixOS
For the last decade (whoa…) or so, I’ve defaulted to using LUKS-encrypted drives for my machines....
Address Sanitizer for Bare-metal Firmware
Posted by Eugene Rodionov and Ivan Lozano, Android Team With steady improvements to Android userspace and...
The Windows Registry Adventure #1: Introduction and research results
Part 2 at https://googleprojectzero.blogspot.com/2024/04/the-windows-registry-adventure-2.html Comments
XZ Utils review notes
Trivial commits like updates to THANKS or typo fixes in comments aren’t mentioned here. The months...
Root Cause vs. Contributing Factors
In multiplication, to get a non-zero product, all factors must be greater than 0. If one...
Home
Docs Read more details about CIPHERLEAKs. Q&A Who is affected by CIPHERLEAKs?All SEV, SEV-ES and SEV-SNP...
Browser Security Bugs that Aren’t: JavaScript in PDF
A fairly common security bug report is of the form: “I can put JavaScript inside a...