In this week's episode, Specter recaps his experiences at Hardwear.IO and a PS5 hypervisor exploit chain presented there. We also cover some of the recently released DEF CON 32 talks. After the conference talk, we get into some filesystem exploit tricks and how arbitrary file write can be taken to code execution in read-only environments.
Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/260.html
[00:00:00] Introduction
[00:00:27] Hardwear.io NL 2024
[00:14:27] Byepervisor - Breaking the PS5 Hypervisor Security
[00:26:38] DEF CON 32 Main Stage Talks
[00:51:16] The Missing Guide to Filesystem Security
[01:00:51] Why Code Security Matters - Even in Hardened Environments
[01:09:12] How I Defeated An MMO Game Hack Author
Podcast episodes are available on the usual podcast platforms:
-- Apple Podcasts: https://podcasts.apple.com/us/podcast/id1484046063
-- Spotify: https://open.spotify.com/show/4NKCxk8aPEuEFuHsEQ9Tdt
-- Google Podcasts: https://www.google.com/podcasts?feed=aHR0cHM6Ly9hbmNob3IuZm0vcy9hMTIxYTI0L3BvZGNhc3QvcnNz
-- Other audio platforms can be found at https://anchor.fm/dayzerosec
You can also join our discord: https://discord.gg/daTxTK9