Profile avatar
angealbertini.bsky.social
Reverse engineer, file formats expert.
Corkami, CPS2Shock, PoC||GTFO, Sha1tered, Magika...
Security engineer @ Google. He/him.
191 posts 835 followers 70 following
Prolific Poster
Conversation Starter
Posts 36 Comments 14

Any requests or questions on PDF manipulations ? (Or another format)

submitted 9 days ago • 0 comments

ICYDK restrictions in PDF (copy pasting, printing…) are linked to encryption, which often uses an empty user password : no password prompt, but the file is still encrypted. So just decrypting the file (via qpdf, pdftk, print to PDF,…) removes these restrictions.

submitted 10 days ago • 0 comments

The livestream on PDF file structure is up. Following the PDF basics livestream, it covers all kinds of PDF structures that you can see in the wild and how to convert them to a classic and accessible form. www.youtube.com/live/9XNdTAP...

submitted 11 days ago • 0 comments

Today, the follow-up from PDF basics: What you need to know to edit any PDF. www.youtube.com/live/9XNdTAP...

submitted 11 days ago • 0 comments

I just pushed an update to logparse to detect the near-collision blocks (w/ no difference) of TextColl. Thanks Marc! github.com/corkami/coll...

submitted 12 days ago • 0 comments

The livestream on multi-hashcolls is up. Covering the hashcoll tag in VT, specific file format structures, defanging files, Stevens' DetectColl, safe hashes... www.youtube.com/live/1D6C6z_...

submitted 12 days ago • 0 comments

J’espère bien ! J’aurais l’air de quoi si je n’avais plus que des fichiers normaux ?!

submitted 13 days ago • 1 comment

The next livestream will be on mitigating hash collisions: preventing them at format design, filtering them out or detecting them. www.youtube.com/live/A7EBbGv...

submitted 14 days ago • 0 comments

The livestream on multi-hashcolls is up! Awesome that David joined and commented on his own hashquines! www.youtube.com/live/-asJnf-...

submitted 14 days ago • 0 comments

In 15 minutes… www.youtube.com/live/-asJnf-...

submitted 14 days ago • 0 comments

The livestream on crypto-polyglots is up! www.youtube.com/live/RP5PVRU...

submitted 16 days ago • 0 comments

In my next livestream, I’ll hexplore crypto-polyglots: - files that remain valid after encryption. - contents that decrypts to different valid content via different keys, with authenticated decryption. www.youtube.com/live/RP5PVRU...

submitted 16 days ago • 0 comments

More advanced hash collisions: Shattered++, Lossless jpegs, jpeg as data & image, .tar.gz and Zip+XML (instant Office document collisions). www.youtube.com/live/fCNx2cO...

submitted 22 days ago • 0 comments

In the next livestream tonight, we’ll hexplore more advanced hash collisions tricks. www.youtube.com/live/fCNx2cO...

submitted 23 days ago • 0 comments

We hexplored the basics of hash collisions and how they can be exploited, exploiting MD5 with Png, Gif, mp4 or Jpg, and also Pdf with SHA1 of course! www.youtube.com/live/wv8aiqW...

submitted 23 days ago • 0 comments

In the next livestream, we’ll extend file format tricks to cryptography and abuse hash collisions: www.youtube.com/live/wv8aiqW...

submitted 23 days ago • 0 comments

Today, we’ll explore weird files in general (no crypto polyglots or hash collisions, only parasites, mock & polyglots), and how to generate them with Mitra. speakerdeck.com/ange/generat... github.com/corkami/mitra

submitted 30 days ago • 1 comment

In 2h, let’s hexplore the PE file format! www.youtube.com/live/eJ1bQmK...

submitted 30 days ago • 1 comment

I got Linux running in a PDF file using a RISC-V emulator. PDFs support Javascript, so Emscripten is used to compile the TinyEMU emulator to asm.js, which runs in the PDF. It boots in about 30 seconds and emulates a riscv32 buildroot system. linux.doompdf.dev/linux.pdf github.com/ading2210/li...

submitted 31 days ago • 11 comments

@ading.dev hey there! Lovely work on that Doom PDF, I made a livestream about its internals! www.youtube.com/live/t17joAi...

submitted 31 days ago • 1 comment

Coming up this weekend: PE & Mitra!

submitted 32 days ago • 0 comments

Doom running from the same file on Dos, Windows and Chrome PDF! github.com/angea/doom-p...

submitted 32 days ago • 0 comments

Thanks for your attention, it was fun! I crafted a working Doom triglot: Dos executable, Portable executable and PDF. www.youtube.com/live/nG2RZrD...

submitted 32 days ago • 0 comments

In 1h!

submitted 32 days ago • 0 comments

Coming up next: the .EXE file format!

submitted 33 days ago • 0 comments

Thanks everyone! www.youtube.com/live/-6tPcUX...

submitted 33 days ago • 0 comments

In ~3 hours, my first livestream on file format designs: www.youtube.com/live/-6tPcUX...

submitted 33 days ago • 0 comments

The next livestream will be on comparing the file formats of PNG, GIF and PCX, all lossless image formats and global standards [during their lifetime], so we can focus on the different design decisions and their impact on engineering, parsing & security. youtube.com/live/-6tPcUX...

submitted 34 days ago • 0 comments

Today, I'll stream about the PCX format. While it is an outdated and irrelevant format nowadays, its structure and lack of forward-thinking makes it very interesting from a file format design perspective. www.youtube.com/live/0sMRHaN...

submitted 35 days ago • 1 comment

My next livestream will be on the .COM files, the DOS "command" file format, the grandfather of PE executables. www.youtube.com/playlist?lis...

submitted 36 days ago • 1 comment

I draw my graphics with #Inkscape. My next livestream will be an introduction to Inkscape!

submitted 37 days ago • 1 comment

In 1h, let’s hexplore the GIF, an old format full of weirdness ! youtube.com/live/EPaD73O...

submitted 37 days ago • 1 comment

Do you know any format or protocol that uses chunking besides Gif/Jif? ICYDK chunking is slicing data in blocks smaller than 256 bytes, with the length before each block. A null block terminates the sequence.

submitted 38 days ago • 3 comments

Ce soir, on parle de Doom.pdf !

submitted 38 days ago • 1 comment

Le direct d’hier soir sur le JavaScript dans les PDFs.

submitted 39 days ago • 0 comments

Ce soir dans 3h, on hexplorera le JavaScript dans les PDFs. www.youtube.com/live/hvixm6C... Le programme prévu est dans la description.

submitted 39 days ago • 0 comments