The extremely popular video game Fortnite is coming to Android sometime this summer, and the fanbase is going wild. Not surprisingly, mobile malware developers are taking advantage. Already, there are several videos on YouTube with links claiming to be versions…

Some time ago, a case about a hacked baby monitor made the news in the US. A mother claimed someone had taken control over the device and surveilled her baby.

ARPPD - An ARP Poisoning Defender noscript

ARPPD - An ARP Poisoning Defender noscript

DanderSpritz_lab - A fully functional DanderSpritz lab in 2 commands

I’m going to walk through a simple yet high-impact privilege escalation I landed on while poking around…

2 votes and 0 so far on reddit

Do you have what it takes to be a cybersecurity expert in our world right now? (Hint: It’s not being a gamer.)

What happens if we crack open AWS Lambda and dig in the gooey internals?

In this blog series we will be covering the endless possibilities and power of Frida. For those of you who have never heard of Frida...

In this note, I describe an interesting XSS that I found in February 2018 in one of the Google applications. I won't only show directly wher...

Are you aware of any (private) bug bounty programs or platforms? I would love to get an invite. Please get in touch with me…

Share your videos with friends, family, and the world

Posted by Mateusz Jurczyk, Project Zero Since early 2017, we have been working on Bochspwn Reloaded – a piece of dynamic binary instrume...

8 votes and 3 so far on reddit

A front-end JavaScript toolkit for creating DNS rebinding attacks. - Kinimiwar/dns-rebind-toolkit

1 votes and 1 so far on reddit

A security researcher recently discovered a flaw in Apple's iOS that allows anyone with a Lightning cable the ability to bypass an iPhone or iPad's passcode attempt limit, opening the door to brute force attacks.