Day[0]

281 Episodes

1. [bounty] XMPP Stanza Smuggling in Jabber and a Cobalt Strike RCE

   Published: 25/10/2022
2. [binary] Some Browser Exploitation and a Format String Bug?

   Published: 20/10/2022
3. [bounty] GitHub to GitLab RCE and a new PHP Supply Chain Attack

   Published: 18/10/2022
4. [binary] i.MX Secure Boot Bypass and a Hancom Office Underflow

   Published: 13/10/2022
5. [bounty] Got UNIX Sockets and Some Filter Bypasses?

   Published: 11/10/2022
6. [binary] Pwning Scoreboards, uClibC, and PS5 Exploitation

   Published: 6/10/2022
7. [bounty] Akamai Cache Poisoning and a Chrome Universal XSS

   Published: 4/10/2022
8. [binary] SoCs with Holes, Crow HTTP Bugs, and Bypassing Intel CET

   Published: 29/09/2022
9. [bounty] Web3 Universal XSS, Breaking BitBucket, and WAF Bypasses

   Published: 27/09/2022
10. [binary] An iOS Bug, Attacking Titan-M, and MTE Arrives

    Published: 22/09/2022
11. [bounty] Reading GitLab Hidden HackerOne Reports and Golang Parameter Smuggling

    Published: 20/09/2022
12. [binary] Fuchsia OS, Printer Bugs, and Hacking Radare2

    Published: 2/06/2022
13. [bounty] A Zoom RCE, VMware Auth Bypass, and GitLab Stored XSS

    Published: 31/05/2022
14. [binary] Pwn2Own, Parallels Desktop, and an AppleAVD Bug

    Published: 26/05/2022
15. [bounty] Stealing DropBox Google Drive Tokens, a GitLab Bug, and macOS "Powerdir" Vulnerability

    Published: 24/05/2022
16. [binary] Python 3 UAF and PS4/PS5 PPPoE Kernel Bug

    Published: 19/05/2022
17. [bounty] Deleting Rubygems, BIG-IP Auth Bypass, and a Priceline Account Takeover

    Published: 17/05/2022
18. [binary] Pwn2Owning Routers and Anker Eufy Bugs

    Published: 12/05/2022
19. [bounty] Cloudflare Pages, Hacking a Bank, and Attacking Price Oracles

    Published: 10/05/2022
20. [binary] NimbusPwn, a CLFS Vulnerability, and DatAFLow (Fuzzing)

    Published: 5/05/2022