Day[0]

258 Episodes

1. [binary] Attacking Bhyves and a Kernel UAF

   Published: 12/01/2023
2. [bounty] Web Hackers vs. Cars and a Facebook Account Takeover

   Published: 10/01/2023
3. [binary] JS Type Confusions and Bringing Back Stack Attacks

   Published: 15/12/2022
4. [bounty] Pwn2Own Bugs and WAF Bypasses

   Published: 13/12/2022
5. [binary] A Huawei Hypervisor Vuln and More Memory Safety

   Published: 8/12/2022
6. [bounty] Remotely Controlling Hyundai and a League of Legends XSS

   Published: 6/12/2022
7. [binary] Patch Gaps and Apple Neural Engine Vulns

   Published: 1/12/2022
8. [bounty] Tailscale RCE, an SQLi in PAM360, and Exploiting Backstage

   Published: 29/11/2022
9. [binary] Hacking Pixel Bootloaders and Injecting Bugs

   Published: 24/11/2022
10. [bounty] Racing Grafana, Stealing Mastadon Passwords, and Cross-Site Tracing

    Published: 22/11/2022
11. [binary] Exploiting Undefined Behavior and a Chrome UAF

    Published: 17/11/2022
12. [bounty] Bypassing Pixel Lock Screens and Checkmk RCE

    Published: 15/11/2022
13. [binary] OpenSSL Off-by-One, Java XML Bugs, and an In-the-Wild Samsung Chain

    Published: 10/11/2022
14. [bounty] Apache Batik, Static Site Generators, and an Android App Vuln

    Published: 8/11/2022
15. [binary] XNU's kalloc_type, Stranger Strings, and a NetBSD Bug

    Published: 3/11/2022
16. [bounty] A Galaxy Store Bug, Facebook CSRF, and Google IDOR

    Published: 1/11/2022
17. [binary] Edge Vulns, a SHA-3 Overflow, and an io_uring Exploit

    Published: 27/10/2022
18. [bounty] XMPP Stanza Smuggling in Jabber and a Cobalt Strike RCE

    Published: 25/10/2022
19. [binary] Some Browser Exploitation and a Format String Bug?

    Published: 20/10/2022
20. [bounty] GitHub to GitLab RCE and a new PHP Supply Chain Attack

    Published: 18/10/2022