Ruben (b33f)

Purveyor of fine antiquarian armaments

XXInstagramInstagramLinkedInLinkedInYouTubeYouTubeGitHubGitHub

Training

Calypso Labs
Calypso Labs
Windows Instrumentation With Frida
Windows Instrumentation With Frida

Tech

KnifeCoat (Blog)
KnifeCoat (Blog)
FuzzySecurity (Static Blog Archive)
FuzzySecurity (Static Blog Archive)
GitHub
GitHub

External Posts

Reproducing WhatsApp CVE-2019-11932 (with AFL & Frida)
Reproducing WhatsApp CVE-2019-11932 (with AFL & Frida)
Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours
Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours
Direct Kernel Object Manipulation (DKOM) Attacks on ETW Providers
Direct Kernel Object Manipulation (DKOM) Attacks on ETW Providers
Out Of Band Update: Cobalt Strike 4.7.2
SilkETW: Because Free Telemetry is … Free!
SilkETW: Because Free Telemetry is … Free!
DLL Side-loading & Hijacking
DLL Side-loading & Hijacking
A Tale Of Bitmaps: Leaking GDI Objects Post Windows 10 Anniversary Edition
A Tale Of Bitmaps: Leaking GDI Objects Post Windows 10 Anniversary Edition

Talks/Workshops

OffensiveX 2025
OffensiveX 2025
H2HC 2024
H2HC 2024
SAFACon Vienna 2024
SAFACon Vienna 2024
SANS HackFest 2023
SANS HackFest 2023
BlackHat USA 2023
BlackHat USA 2023
BlackHat Arsenal USA 2019
BlueHat IL 2020
BlueHat IL 2020
Wild West Hackin Fest 2022
Wild West Hackin Fest 2022
IBM RedCON 2020
IBM RedCON 2020
DefCon24
DefCon24
DefCon25
DefCon Beijing
DefCon Beijing

View on mobile