Austin Schertz won the CodeMash CTF this year, and he dropped off his answers to all 19 challenges.&...
Read More
This is a blog entirely dedicated to security analysis of mobine apps. No idea who writes it b...
Read More
Fascinating look into Internet routing that caused an outage last week. We are really building...
Read More
A new tool for finding malicious JavaScript and securely using external libraries.
https://blog.foca...
Read More
Cool PoC of the Mac vulnerability CVE-2018-4193, an RCE in WindowServer.
https://www.synacktiv.com/r...
Read More
New year, new vulnerabilities.
Or old vulnerabilities. How about Open Redirects, the vu...
Read More
SplashData has their 100 worst passwords out again this year. Remember, at least, prevent thes...
Read More
The OWASP Top 10 was updated last year, and there are a couple of new items. One of them is In...
Read More
A vulnerability was discovered in CSS (!) that will crash your browser. Please don't do this a...
Read More
Here's a new set of training wheels for MetaSploit. It's a little bumpy, but it is pretty dece...
Read More
A flaw in X.Org is exploitable with a tweet sized attack.
https://lists.x.org/archives/xorg-announce...
Read More
It has come to my attention that one of Paul Asadoorian's Security Weekly broadcasts is titled Appli...
Read More