Video

Unions are super usefull for communications. You can save the CRC and Opcode and a union with the payload. Then depending on what the opcode is you can read the union in different ways.

Sony shouldn't be a "game console owner" they should be a game console manufacturer.

Unions are awesome! Had a fun bug with it though, on the ARM you have to specify that it should pack variables, otherwise there are random zeros in the middle

Ive had this issue and Is was thinking of just making a PrimtiveIsEqual(a, b) macro and adopting that in a personal projects. Not a fan of this yoda style. It's depends on subtly.

Ill wait for MVG to explain this to me lol

What I meant to say is that it should not be oriented to C only, be more general and explain a bit more. The title should have been 'why some code is not safe'. Validation of user input is always true whatever the language. Take example on web language, are you taking all user input as granted? Do you think JS and PHP are safe ? Even a rust program taking user input and syscall them can have problems if not validated.

Ho, look, if I ignore compiler warnings, and do not use any testing tool that is an obligation for anyone putting things in production, I get hackable behaviour!! FFS, it's 2024. Even the free GitHub pipeline can detect that you didn't check the boundaries, and that the user entry has not been validated. Dang, C++ isn't safe, assembly is not safe !! I call for bait.

Not explicitly naming your variables was already considered bad practice long before the 00's. You can find source code from the 80's with properly named variables, in now obsolete languages like Basic or Pascal.

69 with an overflow in convertion from int to char

if only i could jail break my ps4

I don't know what the host is talking about but still watching it.....

Hey mate, your jump cut editing is extremely abrasive. You should look into toning it down. It’s TikTok level editing, but you’re clearly much better than that. Edit: Okay, you’re a security researcher, not a content creator strictly. That’s understandable. My bad.

I get what you're going for but the example provided is such a non-issue. I don't use libraries that redefine the operations on primitive types, and nobody should. So when I see int - int, I know exactly what is going to happen. Can minus do a heap allocation on a custom type? Sure, why not? What expectations should you have for a custom type? None, it's custom.

This is why everything should be monitored... If any component on your network mysteriously stops running syslog... Or syslog sizes mysteriously change... These are indicators that something different is happening. It's amazing how many businesses completely ignore monitoring their networks... But this is often due to an over bearing passive aggressive IT person who bawlks at monitoring... Thinking it's taking away from their job... OR in most cases... It will reveal a ton of crap they missed.

2006 was in the far-flung past of 20 years ago where we didn't know enough to use human-readable variables lol 🤣🤣🤣

10 seconds in and we've got an inverse error 😢

i like his shirt.

A switch/case statement in C is doggone close to being a 'GOTO', and I think this was hinted-at towards the end of the video. I use these all the time with zero guilt. But I've never used an explicit goto: in C, and doubt I ever will. I've used countless 'GOTO' instructions in assembly language, because that is a basic instruction every CPU has. Higher-level languages such as C have higher-level constructs that don't require you to use an explicit GOTO, but as you can see from the generated code, the compiler will invoke jumps (GOTO) all over the place. Whether you hate or love GOTO's , your compiled code will have them.

I personally prefer to write with single letter variable names to teach/maintain deobfuscation skills to all levels above "script kiddy".

It help me a lot when clearing up the concepts for my final.

After 10 years ai will program a human from the start it seems

haha yes of course i understand these words

C++ is c cocain on steroids use c++ to much it can lead to heart failure , cardiac arrest , dementia and python speed syndrome

Zig is cool, but I ended up preferring odin a bit more, seems less cluttered to me.

Bro you are amazing. All the tech words used by my professor like dereference is perfectly broken down by you and clearly explained.

the value of p is stored in the balls

The PS3 could be jailbroken with a texas instrument calculator. Still one of the funniest things ever in tech to me.

This is rad

great advice fo sho

At "maristroika dolls" I lost it. I think you made a portmanteau of matryoshka (the doll), and perestroika (the 1980s transparency policy used by gorbechev in the USSR)

DOS means something else... say D-O-S or denial of service.

Hehe peepeepwn

I dont think c is limited by what the kernel/OS allows ,if your code is unsafe enough you can do what you want .

Every program must have a watchdog timer handler?

But can nasa do recursive treesum? If they can not do that in space. Are they real developers?

Owning what you paid for?!?! What a novel idea........

As said in another short, embedded programming is about managing "magic" addresses in use by the hardware, while interrupt programming usually adds some programming of the CPU itself. Both have to be inherently unsafe operations in Rust the same way calling out to the OS in a hosted environment is.

Easy for you to say, gdb on Solaris is really flaky and buggy, GCC doesn't have correct and full support for correctly generating debugging symbols on it, the TUI mode is severely broken, and so debugging is very flaky and difficult. dbx, Solaris' native debugger from the Sun Studio compilers, can't read the debugging information which gcc and g++ generate... gdb debugging only partially works on GNU / Linux, and even there, it's flaky (try calling strlen()) in gdb on Linux...

C>>Rust>>Zig

I was listening to this on my drive in on autoplay and thought for far too long that someone was explaining a turn of Yu-Gi-Oh

Why is run time bounds checking not mandated everywhere? We've had Java for how long?

p comes out of .... (2:22) . This is why we should name our variables better.

But...but I like tabs

Das a lot of sauce

the PS2 I remember people using toothpicks to read burned CDs somehow

"Everyone should learn all the things" Sure if you don't have to actually do any work 😂

Isn't Playstation OS based on FreeBSD since at least PS4? Should have a changelog from the FreeBSD project, so they know what they're pulling in.

zig is fine, which is actually what this video is about, doesn't get the clicks eh 😂💩🤡

Mf copied ezsnippet 💀

There are probably only 2,000 people that know how CPU architecture works.