Welcome.

Tavis Ormandy

$Id: a9be4828a838a95b19d44a13846c5323a36047b5 $

About

Photo of Tavis
Photo of Tavis

Hello, my name is Tavis Ormandy, I’m a vulnerability researcher with Google Project Zero. I’m originally from England, but I currently live in the San Francisco Bay Area.

You’re probably interested in some of my vulnerability research, or perhaps some code I’ve written.

I sometimes write about technical topics on my blog, but it probably hasn’t been updated recently. I sometimes tweet about what I’m working on.

Articles

FAQ

There was a bug in early Pentiums called the f00f bug, it would cause a deadlock if you used in an invalid operand to cmpxchg8b with the lock signal asserted. It was an important vulnerability at the time, and I thought it would be funny to own lock.cmpxchg8b.com.

I think I’m most proud of the KiTrap0D bug, MS10-015. I believe the root cause was Intel changing the x86 spec in the 90s but not publishing any errata. The code was actually correct when it was written, but over the years x86 changed and that introduced a vulnerability!

For many years, if you typed getsystem in metasploit, it used this bug.

Contact

Feel free to email me at .