User forest - Information Security Stack Exchange

244 votes

11 answers

61k views

Why is Math.random() not designed to be cryptographically secure?

asked Mar 15, 2018 at 6:11

29 votes

1 answer

6k views

DMA attacks despite IOMMU isolation

asked Jan 2, 2018 at 11:41

28 votes

2 answers

3k views

Methods root can use to elevate itself to kernel mode

asked Apr 7, 2016 at 2:50

18 votes

6 answers

4k views

Mitigating forensic memory acquisition when an attacker has physical access to a workstation

asked Apr 1, 2016 at 23:51

15 votes

1 answer

1k views

Random seed not propagating to the entropy pools in a timely manner

asked Apr 12, 2018 at 0:09

15 votes

1 answer

985 views

JPEG artifacts leaking information about redacted contents

asked Apr 20, 2018 at 7:10

14 votes

2 answers

2k views

Recovery of EEPROM data after bulk erase operation

asked Oct 27, 2019 at 0:56

12 votes

1 answer

1k views

Entropy sources used by modern Windows

asked Apr 5, 2018 at 1:23

11 votes

1 answer

2k views

Why does TLS 1.3 deprecate custom DHE groups?

asked Mar 19, 2018 at 3:10

11 votes

2 answers

1k views

What are the new MDS attacks, and how can they be mitigated?

asked May 15, 2019 at 2:06

10 votes

2 answers

906 views

How effective is Windows KDP for exploit mitigation in practice?

asked May 16, 2021 at 21:57

10 votes

3 answers

736 views

Simple way to safely paste text from website into terminal

asked May 21, 2021 at 22:12

10 votes

2 answers

3k views

Methods of cold boot attacks in the wild

asked Apr 4, 2016 at 23:07

9 votes

0 answers

416 views

Authentication using SysRq

asked Feb 6, 2018 at 3:57

9 votes

1 answer

2k views

Mitigating the new attack on WPA2 involving PMKID

asked Aug 5, 2018 at 3:14

8 votes

1 answer

692 views

Mitigating Meltdown by checking the faulting address in every page fault?

asked Jan 9, 2018 at 7:49

7 votes

2 answers

6k views

Can mprotect() be used to change the permissions of .rodata?

asked Nov 29, 2017 at 21:24

7 votes

1 answer

346 views

What exactly is CVE-2021-23978 (from MSFA2021-08 in Mozilla Firefox)?

asked Feb 23, 2021 at 23:35

7 votes

1 answer

855 views

How sensitive are acoustic side-channels to compression with a narrowband codec?

asked Apr 27, 2021 at 1:20

6 votes

1 answer

579 views

Can any of the INTEL-SA-00086 vulnerabilities be exploited by an unprivileged user?

asked Nov 28, 2017 at 0:54

5 votes

1 answer

3k views

LUKS2 on-disk format specifications

asked Feb 17, 2018 at 22:21

5 votes

1 answer

1k views

How does GCC's -mmitigate-rop work?

asked Mar 10, 2018 at 7:08

5 votes

1 answer

443 views

What buses carrying sensitive information on a running computer are vulnerable to sniffing?

asked Apr 5, 2016 at 1:52

5 votes

1 answer

517 views

Does OpenSSH use padding of random lengths?

asked May 13, 2018 at 2:32

5 votes

1 answer

938 views

What use does a TPM have for accurate timekeeping?

asked May 25, 2018 at 5:22

5 votes

3 answers

3k views

Is the Linux kernel vulnerable to LazyFP (CVE-2018-3665)?

asked Jun 15, 2018 at 5:04

4 votes

1 answer

826 views

Can a JTAG device be attached to a running system?

asked Apr 24, 2016 at 3:39

3 votes

2 answers

1k views

Is using cat -v an appropriate way to sanitize untrusted text?

asked Dec 21, 2017 at 5:30

3 votes

1 answer

569 views

Is microcode physically able to mitigate Meltdown?

asked Jan 18, 2018 at 17:21

3 votes

0 answers

506 views

Minimum set of ACS features to secure remote PCIe devices

asked Jul 21, 2018 at 0:56

Stack Exchange Network

38 Questions

Why is Math.random() not designed to be cryptographically secure?

DMA attacks despite IOMMU isolation

Methods root can use to elevate itself to kernel mode

Mitigating forensic memory acquisition when an attacker has physical access to a workstation

Random seed not propagating to the entropy pools in a timely manner

JPEG artifacts leaking information about redacted contents

Recovery of EEPROM data after bulk erase operation

Entropy sources used by modern Windows

Why does TLS 1.3 deprecate custom DHE groups?

What are the new MDS attacks, and how can they be mitigated?

How effective is Windows KDP for exploit mitigation in practice?

Simple way to safely paste text from website into terminal

Methods of cold boot attacks in the wild

Authentication using SysRq

Mitigating the new attack on WPA2 involving PMKID

Mitigating Meltdown by checking the faulting address in every page fault?

Can mprotect() be used to change the permissions of .rodata?

What exactly is CVE-2021-23978 (from MSFA2021-08 in Mozilla Firefox)?

How sensitive are acoustic side-channels to compression with a narrowband codec?

Can any of the INTEL-SA-00086 vulnerabilities be exploited by an unprivileged user?

LUKS2 on-disk format specifications

How does GCC's -mmitigate-rop work?

What buses carrying sensitive information on a running computer are vulnerable to sniffing?

Does OpenSSH use padding of random lengths?

What use does a TPM have for accurate timekeeping?

Is the Linux kernel vulnerable to LazyFP (CVE-2018-3665)?

Can a JTAG device be attached to a running system?

Is using cat -v an appropriate way to sanitize untrusted text?

Is microcode physically able to mitigate Meltdown?

Minimum set of ACS features to secure remote PCIe devices