-
06 Feb 2020
Not hunter2: Buffer Overflow in Sudo via pwfeedbackIf you type AAAA into sudo it just shows up as stars ...
Read More
-
20 Jan 2020
Cold ReadingsThis post will be taking a slightly different approach than my others...
Read More
-
29 Sep 2019
Deobfuscating And Analyzing A Vbs DropperAnalysis of a VBS IcedID dropper
Read More
-
08 Sep 2019
Why We Fail at Keeping Git SecretsYour secrets are showing!
Read More
-
07 May 2019
How I Host This Site for (almost) FreeI made this blog on a *serious* budget...
Read More
-
12 Apr 2019
Attacking Cloud Containers Using SSRFRunning untrusted code in cloud environments has always been a difficult problem ...
Read More
-
03 Dec 2018
Digging in to SCP Command InjectionJumping down the rabbit hole that is SCP
Read More
-
17 Apr 2018
Introducing CVEStackA new tool for relevant CVE feeds ...
Read More
-
13 Jul 2017
I am info@ - DMARC at its finestHow I became info@ ebay, github, apple, and more ...
Read More
-
13 Jul 2017
NTLM Hash Leaks: Microsoft's Ancient Design FlawThe tale of an unfixed bug older than I am ...
Read More
-
03 Jul 2017
How to be Popular on GitLabI've been getting a lot of emails from GitLab. Why? Simply because of my name ...
Read More
-
28 Feb 2017
Fishing For BotsHave you ever received likes, retweets, or replies on posts for no apparent reason from someone you don’t know?
Read More
-
23 Apr 2016
New Blog!I finally migrated from my old blogging platform to Github Pages ...
Read More
-
22 Apr 2016
Minecraft Cape VulnerabilityAfter waiting almost a year for Minecraft's creators(Mojang AB) to respond to my bug report past an initial message, ...
Read More
-
21 Nov 2015
MediajackingThe modern interneter is very click-happy. We like buttons and links ...
Read More