Profile avatar
jduck.me
Continuously learning about computer security through research and development.
48 posts 623 followers 246 following
Prolific Poster
Conversation Starter
Posts 32 Comments 18

I'm proud to announce that myself and @AtipriyaBajaj have created the Workshop on Software Understanding and Reverse Engineering (SURE), which will be co-located at CCS 2025. sure-workshop.org/ Please follow our workshop account @sureworkshop and RT it for visibility :).

submitted 28 days ago • 1 comment

We're proud to announce the release of Binary Ninja 5.0. Here's some highlights: Union Support, Dyld Share Cache & Kernel Cache, Firmware Ninja, Auto Stack Arrays, Stack Structure Type Propagation, and so much more. Check out the blog post for more information: binary.ninja/2025/04/23/5...

submitted 30 days ago • 0 comments

Does using #rustlang really make your software safer? tweedegolf.nl/en/blog/152/...

submitted 30 days ago • 1 comment

I'm proud to announce that I, through my company @magnetitesec.bsky.social, donated to the Redox OS project! If you're not familiar, Redox OS is a pure Rust Micro kernel based operating system. This donation allows them to sponsor one additional student for their Summer of Code!

submitted 32 days ago • 0 comments

I played @defcon.bsky.social CTF quals with @shellphish.bsky.social this year! I'm really impressed with the difficulty levels Nautilus Institute put forth. Making CTF challenges in the AI era has... special considerations... but they nailed it :-) Thanks to everyone involved for a great weekend!

submitted 38 days ago • 0 comments

There is a small bug in the signature verification of OTA packages in the Android Open Source Framework. Official builds doing normal double verification of packages are not vulnerable but OEMs and third party apps may be. Jérémy Jourdois explains it here: blog.quarkslab.com/aosp_ota_sig...

submitted 45 days ago • 0 comments

"Building a Linux Kernel Driver using Rust": rust-exercises.ferrous-systems.com/latest/book/...

submitted 49 days ago • 0 comments

Our Call for Presentations & Events is now open! Got cool research, a fresh exploit, or a unique cybersec insight? Submit your talk & be part of Australia’s biggest hacker con! cfp.bsidescbr.com.au/bsides-canbe...

submitted 53 days ago • 0 comments

github.com/ariel-os/ari... /via @mattkeeter.com #rustlang

submitted 53 days ago • 1 comment

Having some fun with EM measurements today - side-channels are awesome!

submitted 55 days ago • 1 comment

Paged Out! #6 has arrived! And it's jam-packed with content! You can download it here: pagedout.institute?page=issues....

submitted 55 days ago • 0 comments

Tonight. AHA 0xDE. If it is your first time attending, you will give an “intro talk”. This is an opportunity to share about yourself and allow us to get to know you. This is an important part of the new attendee process. Please take it seriously. If you’ve given an intro talk before, but have […]

submitted 57 days ago • 0 comments

Happy to share my slides from BOOTSTRAP25. Unfortunately the bug discussed is still not patched in Linux 6.14.0 despite it being reported explicitly. Slides are in markdown but there's a PDF in "releases" too github.com/jduck/bs25-s...

submitted 59 days ago • 1 comment

The sedexp Linux malware was disclosed in late 2024. In my talk at @kernelcon.bsky.social, I will present my own deep dive of the malware, including many parts that have not been made public, such as loading of a memory-only rootkit. Be sure to attend for a teardown with @volatilityfoundation.org 3!

submitted 64 days ago • 0 comments

Has anyone else seen m.imdb.com/title/tt0218... ? Eerie

submitted 77 days ago • 1 comment

Last week I attended Vector35 @re-verse.io RE//verse conference and it was great! Excellent food, high signal to noise (RE/VR), and great people. I scored some amazing schwag including a SIM transposer and a @binaryninja.bsky.social hacky sack! w00t!

submitted 81 days ago • 0 comments

On March 29th, I will be speaking at @bsidessd.bsky.social on Volatility 3, including all its new features and plugins. Be sure to attend to catch a sneak peak at the new framework before the major release later this Spring! www.bsidessd.org #DFIR #infosec

submitted 81 days ago • 0 comments

Digital vs film X-ray . Film offers higher resolution and better dynamic range with the same settings, but slightly longer exposure time (and more tedious image acquisition). Comes in handy when it comes to tiny electronics. Images of an Abbott Lingo continuous glucose monitor.

submitted 86 days ago • 0 comments

BlackHoodie will be back at @ringzer0.bsky.social Bootstrap conference in Austin, TX 🤠 On Friday March 21st I'll be teaching Compiler Internals for Security Engineers, a class for women by women, and it's free. Register here blackhoodie.re/Ringzer0_Boo...

submitted 93 days ago • 0 comments

Tamme is giving a talk at Embedded World 2025! He shows how Rust’s type system and package manager can help to improve development speed and code quality. Also visit us at our booth, or book a time slot for a private chat: https://buff.ly/4308AWE  @diondokter.nl #ew25 #embeddedworld #rustlang

submitted 94 days ago • 0 comments

I'm giving a talk at BOOTSTRAP25 in Austin! Hope to see y'all there! ringzer0.training/bootstrap25-...

submitted 94 days ago • 0 comments

It is EXTREMELY cool to me that: * Use of Rust on Embedded platforms is such a high percentage of the ecosystem (16.8% bare metal, 12.9% with an OS) * The usage is increasing year over year Check out the survey results! blog.rust-lang.org/2025/02/13/2...

submitted 99 days ago • 2 comments

NanoKVM is sketchy. youtu.be/plJGZQ35Q6I

submitted 107 days ago • 0 comments

First episode is up! youtu.be/7IHKRzGQeog via @rkl.bsky.social

submitted 112 days ago • 0 comments

I'm trying to think of a good way to flex Poststation as a demo for the embedded world booth. Does anyone have ideas of fun, interactive, and maybe mind bending things to have 8-16 independent MCUs do? I plan to fit it all into a eurorack case, as individual cards/modules.

submitted 120 days ago • 2 comments

I did the podcast thing! It was great fun chatting with Matthias Endler on his “Rust in Production” podcast. We talked about our little Rust based ECU at Volvo Cars and how it came about. Check it out: corrode.dev/podcast/s03e...

submitted 120 days ago • 2 comments

I’ve published CLUES (Custom Lightweight UUID Exchange Schema) and my current data about Bluetooth custom UUIDs to its own repository so that it can easily be incorporated as a git submodule in other research projects. https://github.com/darkmentorllc/CLUES_Schema

submitted 130 days ago • 0 comments

I’ve published BTIDES (BlueTooth Information Data Exchange Schema) to its own repository so that it can easily be incorporated as a git submodule in other research projects. I have started using this for crowdsourced BT info sharing. https://github.com/darkmentorllc/BTIDES_Schema

submitted 130 days ago • 0 comments

Worst Fit by @orange.tw. Nasty stuff. blog.orange.tw/posts/2025-0...

submitted 131 days ago • 0 comments

In this one we learn about using embassy to do embedded development with async Rust: youtu.be/pDd5mXBF4tY

submitted 133 days ago • 1 comment

@thejpster.org.uk You don't follow so I can't message but I hear the PR is coming next week

submitted 136 days ago • 0 comments

If you haven't seen the Honey tech drama you absolutely have to, it's awesome! youtu.be/vc4yL3YTwWk

submitted 140 days ago • 2 comments