The list below is compiled to inform, guide, and inspire budding security researchers. Oh and to pick something for bedtime reading too.
Included in the list are works on the following topics related to MCU/SoC security:
At the end of the list, there is also a section with links to articles of potential general interest, not addressing vulnerabilities in any specific device.
| #!/usr/bin/env python3 | |
| # SPDX-License-Identifier: 0BSD or CC0-1.0 or MIT-0 or Unlicense | |
| # Copyright (c) 2023, Ryan Castellucci, No Rights Reserved | |
| import io, sys | |
| import datetime | |
| import argparse | |
| import requests | |
| import operator | |
| import struct |
This document was originally written several years ago. At the time I was working as an execution core verification engineer at Arm. The following points are coloured heavily by working in and around the execution cores of various processors. Apply a pinch of salt; points contain varying degrees of opinion.
It is still my opinion that RISC-V could be much better designed; though I will also say that if I was building a 32 or 64-bit CPU today I'd likely implement the architecture to benefit from the existing tooling.
Mostly based upon the RISC-V ISA spec v2.0. Some updates have been made for v2.2
The RISC-V ISA has pursued minimalism to a fault. There is a large emphasis on minimizing instruction count, normalizing encoding, etc. This pursuit of minimalism has resulted in false orthogonalities (such as reusing the same instruction for branches, calls and returns) and a requirement for superfluous instructions which impacts code density both in terms of size and
... or Why Pipelining Is Not That Easy
Golang Concurrency Patterns for brave and smart.
By @kachayev
The conversation that led to the creation of the channel:
<ferram4|afk> So, I continue following references on supersonic wing stuff,
and I find a paper that tries to tweak linear supersonic flow to work for
high AoA, hypersonic flight.
<KinglyRedLion> the FUCK
<ferram4|afk> I love technical papers. ^_^
<KinglyRedLion> Why would you do high AOA hypersonic?
<egg|zzz|egg> KinglyRedLion: to publish
| require 'eventmachine' | |
| EM.run do | |
| SEKRET_SAUCE = EM.attach( | |
| open(RUBY_PLATFORM =~ /mswin|mingw/ ? 'NUL:' : '/dev/null', 'w') | |
| ) | |
| EM.start_server('0.0.0.0', 80, Module.new do | |
| def post_init; proxy_incoming_to(SEKRET_SAUCE); end | |
| end) | |
| end |
| #!/usr/bin/env python3 | |
| import sys | |
| import textwrap | |
| # Very basic bitstream to SVF converter, tested with the ULX3S WiFi interface | |
| flash_page_size = 256 | |
| erase_block_size = 64*1024 |
| // ==UserScript== | |
| // @name Twitter Alt-Text to Title-Text | |
| // @description Copy the alt attribute of twitter images into the title attribute, so that I can see the alt text on hover. | |
| // @version 1 | |
| // @grant none | |
| // @include https://twitter.com/* | |
| // ==/UserScript== | |
| const SELECTORS = `.tweet .AdaptiveMedia-photoContainer img | |
| , .Gallery-media img |
This gist is deprecated in favor of https://github.com/ninenines/cowboy/blob/master/doc/src/guide/specs.asciidoc which has a formatted version at https://ninenines.eu/docs/en/cowboy/2.0/guide/specs/