ARPPD - An ARP Poisoning Defender noscript

DanderSpritz_lab - A fully functional DanderSpritz lab in 2 commands

I’m going to walk through a simple yet high-impact privilege escalation I landed on while poking around…

2 votes and 0 so far on reddit

Do you have what it takes to be a cybersecurity expert in our world right now? (Hint: It’s not being a gamer.)

What happens if we crack open AWS Lambda and dig in the gooey internals?

In this blog series we will be covering the endless possibilities and power of Frida. For those of you who have never heard of Frida...

In this note, I describe an interesting XSS that I found in February 2018 in one of the Google applications. I won't only show directly wher...

Are you aware of any (private) bug bounty programs or platforms? I would love to get an invite. Please get in touch with me…

Share your videos with friends, family, and the world

Posted by Mateusz Jurczyk, Project Zero Since early 2017, we have been working on Bochspwn Reloaded – a piece of dynamic binary instrume...

8 votes and 3 so far on reddit

A front-end JavaScript toolkit for creating DNS rebinding attacks. - Kinimiwar/dns-rebind-toolkit

1 votes and 1 so far on reddit

A security researcher recently discovered a flaw in Apple's iOS that allows anyone with a Lightning cable the ability to bypass an iPhone or iPad's passcode attempt limit, opening the door to brute force attacks.

Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems - GitHub - ChrisTheCoolHut/Zeratool: Automatic Exploit Generation (AEG) and remote flag capture for exploitab...

Introduction and Motivations

Administrative portals remain one of the top “low hanging fruit” categories to be on the lookout for when performing bug bounties…

Tweets are of others