• Home
  • About & Portfolio
    • Dylan Katz photo

      Dylan Katz

      Software dev, security aficionado, and semi-creative writer. I break and fix stuff, then sometimes write about that here.

    • My Portfolio
    • Twitter
    • LinkedIn
    • Github
    • StackOverflow
    • Keybase
  • Posts
    • All Posts
    • All Tags

All Posts

  • 06 Feb 2020

    Not hunter2: Buffer Overflow in Sudo via pwfeedback

    If you type AAAA into sudo it just shows up as stars ...

    Read More
  • 20 Jan 2020

    Cold Readings

    This post will be taking a slightly different approach than my others...

    Read More
  • 29 Sep 2019

    Deobfuscating And Analyzing A Vbs Dropper

    Analysis of a VBS IcedID dropper

    Read More
  • 08 Sep 2019

    Why We Fail at Keeping Git Secrets

    Your secrets are showing!

    Read More
  • 07 May 2019

    How I Host This Site for (almost) Free

    I made this blog on a *serious* budget...

    Read More
  • 12 Apr 2019

    Attacking Cloud Containers Using SSRF

    Running untrusted code in cloud environments has always been a difficult problem ...

    Read More
  • 03 Dec 2018

    Digging in to SCP Command Injection

    Jumping down the rabbit hole that is SCP

    Read More
  • 17 Apr 2018

    Introducing CVEStack

    A new tool for relevant CVE feeds ...

    Read More
  • 13 Jul 2017

    I am [email protected] - DMARC at its finest

    How I became [email protected] ebay, github, apple, and more ...

    Read More
  • 13 Jul 2017

    NTLM Hash Leaks: Microsoft's Ancient Design Flaw

    The tale of an unfixed bug older than I am ...

    Read More
  • 03 Jul 2017

    How to be Popular on GitLab

    I've been getting a lot of emails from GitLab. Why? Simply because of my name ...

    Read More
  • 28 Feb 2017

    Fishing For Bots

    Have you ever received likes, retweets, or replies on posts for no apparent reason from someone you don’t know?

    Read More
  • 23 Apr 2016

    New Blog!

    I finally migrated from my old blogging platform to Github Pages ...

    Read More
  • 22 Apr 2016

    Minecraft Cape Vulnerability

    After waiting almost a year for Minecraft's creators(Mojang AB) to respond to my bug report past an initial message, ...

    Read More
  • 21 Nov 2015

    Mediajacking

    The modern interneter is very click-happy. We like buttons and links ...

    Read More
  • 20 Aug 2015

    Boredom

    I can't wait to see where the future leads

    Read More