Sign in with Twitter

Username:

Nasko Oskov @nasko Seattle, WA

Security geek with his own views and opinions. Hacking on Chromium to make it more secure, isolating sites from each other.

1,039 Following   2,653 Followers   8,862 Tweets

Joined Twitter 7/20/09


Yes! https://t.co/ioGRwAsUH3
9/25
2020
@florentcure We all learn, don't we? ;)
9/21
2020
@UnsungHero97 @BruceDawson0xB This is just trade positions, not really anything complicated. Just dividends end up… https://t.co/xryiJ3G5sZ @BruceDawson0xB Except https://t.co/WjWNX65x0K : ). Yeah, I think you are right, but it doesn't make it easy to wri… https://t.co/qcZOVLygVqJavaScript for you ladies and gentlemen: var p = 0.0; p += 100; p += 0.372; p += -100; p += -0.372; p === 0; false 🤯
9/19
2020
@emcoffey3 @ericlaw It actually also very accurately describes what the method does, so it is a double bonus :)There seems to be quite some questions and confusion about the impact of exploiting Zerologon (CVE-2020-1472) on th… https://t.co/WsStRS6oSC
Retweeted by Nasko Oskov @0xMatt @justinschuh @__apf__ I don't know who y'all are. What did you do to the great folks I work with?! @cpeterso @fugueish @ericlaw Thanks for the pointers!
9/17
2020
@crypt0ad Hmm, this might actually be something I worked on ... maybe worthwhile trying to recall what happened, si… https://t.co/nhXV9U4jUt @ericlaw Great! I love twitter as a way to discover what my co-workers are up to :D /cc @fugueish @ericlaw Where did you see that? I'm very curious, since I have some crazy ideas too :)My daughter refuses to fill this out, pointing out the many fields that prove that her teacher is trying to steal h… https://t.co/tju67o24QM
Retweeted by Nasko Oskov
9/16
2020
Experiments in Rust/C++ interop: https://t.co/1ZUYjx7hch
Retweeted by Nasko Oskov
9/12
2020
Hey @VailResorts, it is very disrespectful to hang up on your loyal customers. Putting someone on hold, as much as… https://t.co/BiEXL9RrXFBest of both worlds! Coffee *and* spirits all in one. https://t.co/uKq7nr2GHv
9/10
2020
@TomRittervg Colors are very powerful communication aid, but you need to use the right colors. The example you have… https://t.co/3lzGkRBubw @__apf__ @estark37 2) is the only way I've been able to do it. If I take notes, I'm not as present, so I jot down t… https://t.co/66L5Fy3qmB
9/9
2020
❗️CLOSE YOUR WINDOWS, SEATTLE ❗️ Thick wildfire smoke has settled over the city. Air quality is rapidly deteriorat… https://t.co/NFwxvo2QjA
Retweeted by Nasko Oskov
9/8
2020
I noticed that it's been nearly 12 months since I posted on my blog. To avoid hitting that mark, I typed up somethi… https://t.co/HfdPeABuM1
Retweeted by Nasko Oskov @arw Whoa! Glad to hear you made it out ok and could share this image.
9/7
2020
Picture Lake definitely lives up to its name. Mt Shuksan was gorgeous yesterday! https://t.co/Z2qTeimBcM
9/6
2020
This birthday takes the 🎂. We’re proud to celebrate 12 years of innovating, having fun and building for the open we… https://t.co/zI3zQC8RKC
Retweeted by Nasko Oskov
9/3
2020
Someone should chat with the devs behind @amazon's Accelerate program and tell them that email is case insensitive… https://t.co/I8d57zaL5U @justinschuh https://t.co/03gh8zfs7k @justinschuh The local Trader Joes has the alcohol section labeled "Home Schooling Supplies" ;).
9/1
2020
@BenLaurie @__apf__ I try to force myself not to react/talk and only do so if there has been X seconds of silence.… https://t.co/sOUr1bzfUz
8/26
2020
We had an unexpected but very much appreciated visitor in our backyard last evening. Stood around for a long time a… https://t.co/2QY5p9F4oB @crypt0ad Ouch, unauthenticated bug?! I can't wait to see the write up. In general, RPC is the layer that does the… https://t.co/f3B3Fm5F2m
8/22
2020
@MrDBCross @crypt0ad I haven't looked in a long time, but it was still the member to DC channel, present at all tim… https://t.co/Msdv85ib8G @crypt0ad Whoa! Blast from the past. I should look at the details, you got me very curious.
8/21
2020
Dependency https://t.co/xmiOCImBUD https://t.co/r7hiO0fMm6 https://t.co/6YyAu0WUwC
Retweeted by Nasko Oskov
8/19
2020
Maybe a way to have a project like Servo thrive is to intentionally be nonconformant. Get rid of floats, sync XHR,… https://t.co/mQQXJmo27t
Retweeted by Nasko Oskov
8/15
2020
In Part 2 of my blog series, I break ASLR using usrsctp and get a working exploit in WebRTC https://t.co/qTr1giABvD
Retweeted by Nasko Oskov
8/5
2020
@__apf__ Just don't post it on Instagram :). This is my solution. It is also embarrassing how long some puzzles can… https://t.co/mhiHYzEy6k
8/4
2020
@LeaKissner Congrats! This looks like an awesome opportunity and excited to see what the future brings!
8/3
2020
@greg7375 https://t.co/f29ga98eV6 @greg7375 It never gets old and every time I see the view of it, it makes me feel great. I love mountains!While I don't have the visibility @frgx has, I'd totally +1 having solid security engineering team working alongsid… https://t.co/Y8oeIbMDwY @greg7375 How was the day at Rainier? Where did you end up hiking?
8/2
2020
@greg7375 Soon! And when I get it, we should do Bay Area<>Seattle chat. @greg7375 Don't have a license yet, just GMRS one. @greg7375 @ericlaw Where's that? @greg7375 If you are going to the Paradise area, definitely hit Panorama Point. Just enjoy the mountain, it is gorg… https://t.co/5pTX5vmlo7My team is looking for a PM. You will be working with the Vulnerability Research Team on a number of things such as… https://t.co/KZkmMav5mN
Retweeted by Nasko Oskov
8/1
2020
@beriberikix @Vincent_Scheib @dalmaer Thanks for the pointer! I did port the Chrome App to WebUSB, which it seems r… https://t.co/SK4PYaqCTW @dalmaer WebUSB! I can use software defined radio (SDR) USB dongle to receive any radio signal through the browser.… https://t.co/5sTlVvW1lZAn interesting experiment by @igalia. If you have complained before about "some browser won't implement some featur… https://t.co/Y9zWxkHYWs
7/30
2020
Look my friends, you can embrace the truth with me: App Stores and Apps are bad. It's not just some specific sub-se… https://t.co/wioxlxN5tC
Retweeted by Nasko Oskov
7/29
2020
Favorite secret Linux Chrome feature: Middle-click on the new tab button to open the primary selection in a new tab.
Retweeted by Nasko Oskov
7/16
2020
Helping to spread the word for an undergraduate CTF organized by the @IllinoisCS student group that got me into sec… https://t.co/OAlgeKmfO2
Retweeted by Nasko Oskov
7/15
2020
YOLO! In real life! https://t.co/2gnuQcfTxt
7/3
2020
Spent the last couple of weeks in a class by @itszn13 and it was a lot of fun and learning. Highly recommended and… https://t.co/UIfKms29tP @estark37 @tiraniddo Just don't use goma, since it will eat up all the bandwidth. Don't ask how I know ;).
6/27
2020
✊🏽 #JuneteenthConf will be happening this Fri&Sat! ✊🏾 Schedule is now published: https://t.co/b92nlvBC3Z ✊🏿 Amplify… https://t.co/BRBT6U4Abo
Retweeted by Nasko Oskov
6/19
2020
1/ We think this is an important problem area to explore because phishing and other forms of social engineering are… https://t.co/PKjEY5SjM6
Retweeted by Nasko Oskov
6/16
2020
Go talk to @0xMatt! He does good work and is a great person to work with! https://t.co/y0gFxEKyK6
6/11
2020
@justinschuh I wish the ratio of wrapping up vs walking away was higher. Some day!
6/4
2020
@arw @0xMatt @greg7375 Can I haz a link too?!
5/30
2020
Updated @googlechrome dinobot w/ vision by @meacer: https://t.co/btSXbUaK0L #offlinedino
Retweeted by Nasko Oskov
5/26
2020
Remote work changes are being driven by the expectation of 25% occupancy limits at facilities for many months to co… https://t.co/ijJDu6EmJL
Retweeted by Nasko Oskov
5/24
2020
@greg7375 Have you tried getting a spot?! 😉 I've been trying and it will eventually work. @greg7375 If only COVID-19 lockdown happened few days later! I had my license exam scheduled.
5/19
2020
Very happy to see the team rolling this out. These kind of resource limits are exactly the right defense against ab… https://t.co/09SbwGbU4w
Retweeted by Nasko Oskov
5/15
2020
@argvee Congrats!
5/13
2020
if you're a URL purist, run Chrome Canary, and don't want to install the Suspicious Site Reporter Extension (… https://t.co/6s30gyjWS3
Retweeted by Nasko Oskov
5/6
2020
@stephanneuhaus1 Language choices and idiomatic code set quite a bit the type of code folks would right. Majority o… https://t.co/mbvNDb4wLd @stephanneuhaus1 As with everything in engineering, it is about trade offs and finding a good balance. Solution is… https://t.co/Pr67kX2TZu
5/4
2020
I cannot plus this enough! Complex and less readable code leads to more bugs - problems for both security and relia… https://t.co/XyPewfYWhZ
5/3
2020
Catch up with what the @googlechrome security team has been up to during the first quarter of 2020:… https://t.co/7ALWhBOM6K
Retweeted by Nasko Oskov
4/25
2020
@greg7375 @__apf__ We embrace all the bugs in our house 😉 it builds better immune system. @__apf__ I actually miss that age, as strange as it sounds. The messes they make are great memories, even though at… https://t.co/P99ZAlXnloThe entire production is just the two of them, from filming to editing to posting. Sneak peek behind the scenes :) https://t.co/MoOs9ECTQPLet your kids be bored! You can be surprised what ideas can brew in their minds and what they can learn! Mine start… https://t.co/GWc0unnki3In case it wasn't clear what to do at this confusing time, just watch this video to help clarify - https://t.co/IBwrDaf010
4/24
2020
+1! https://t.co/WvkLMiPjof
4/12
2020
Through sometimes painful experience, Googlers have learned a lot about building safe and reliable systems at scale… https://t.co/PouhEXGG7w
Retweeted by Nasko Oskov
4/9
2020
I’d like to announce that I’m looking for a new role. Much of what I what I do is being a foundational builder of t… https://t.co/WhxEhaV8Y0
Retweeted by Nasko Oskov
4/7
2020
+1 on always filing bugs - it is the only way to scale and ensure there is a chance of addressing issues. We'd rath… https://t.co/ECmjTB0pM4
4/6
2020
We've temporarily reverted Chrome's SameSite rollout, and intend to pick it back up in the summer. It was a necessa… https://t.co/JONpmhA4tX
Retweeted by Nasko Oskov
4/3
2020
@greg7375 @arw @justinschuh @__apf__ 50!
4/2
2020
@ilovefluffy @__apf__ Either hands or rolling pin, I use the former, the kids use the latter :). @__apf__ If it is sticky, then you likely have more moisture than needed in the dough. I never need anything more t… https://t.co/6rZOuiBXGe
4/1
2020
I tested positive for COVID-19 and am recovering. Listen to what John Oliver has to say about our national response… https://t.co/65dTtcvCgz
Retweeted by Nasko Oskov
3/31
2020
@rmhrisk I've been eyeing this one for a while. If I had a place to park it ... would have been an easier decision. Go for it!
3/29
2020
@0xMatt @halvarflake It doesn't get easier as they get older, it is a deception that seems logical, but it is not true!
3/28
2020
@riskybusiness The team is awesome and took quite the effort, but the goal was to indeed "just work" and be transpa… https://t.co/0gGwUP4ysBThanks @riskybusiness for the nice words about the work we have been doing on Chrome security and site isolation! I… https://t.co/PSpMtfOHrM
3/26
2020
@rsesek Wow, I've been thinking of how to get this more under control and was about to start a spreadsheet. I'll totally try it out!To protect Washingtonians from COVID-19, I am issuing a ‘Stay Home, Stay Healthy’ order. Here is what it means f… https://t.co/CrPtB77Sso
Retweeted by Nasko Oskov
3/24
2020
@groby @laparisa Same question. Why cinnamon?! Cumin is indeed awesome.
3/23
2020
Hey @amazon, how come price of an item is double the price on your site compared to the manufacturer/dealer? Doesn't seem right.
3/21
2020
Due to adjusted work schedules, we’re pausing upcoming Chrome & Chrome OS releases. Our goal is to ensure they cont… https://t.co/Sh1TGv5wBL
Retweeted by Nasko Oskov
3/18
2020
@frgx @figmadesign Congrats and best wishes for the new gig!
3/17
2020
There goes our ski season :(. We were supposed to have a fun race tomorrow :(. https://t.co/ffip2VLUgu
3/15
2020
Very good thread about WFH. I'd +1 pretty much all the tweets in it. https://t.co/nw6rm8jnIx
3/11
2020
@BruceDawson0xB @UnsungHero97 Awesome! This is the type of competition I welcome. We need more positives in today's… https://t.co/NuH4du6P2C @UnsungHero97 No. You cannot see Mt Rainier from Stevens Pass. This is White Pass ski area. Awesome place I visited… https://t.co/NAARaCaSRB @greg7375 I dabbled at volunteering as a ski instructor a while back, but they wanted me to be an employee and have… https://t.co/yF8lM4FWZGIn case it wasn't clear for some folks, my second part time job is not one that actually pays :). It is being a par… https://t.co/8GMqpO18GN
3/10
2020

0