Day[0]

258 Episodes

1. A too trusty TrustZone and a few Linux Kernel bugs [Binary Exploitation]

   Published: 11/11/2021
2. A MacOS SIP Bypass & an XSS Fiesta [Bounty Hunting]

   Published: 9/11/2021
3. Type Confusion in Android NFC, PHP-FPM Local Privilege Escalation, and CallbackHell [Binary Exploitation]

   Published: 4/11/2021
4. Discourse SNS RCE, a Stored XSS in GitLab, and a Reddit Race Condition [Bug Hunting]

   Published: 2/11/2021
5. A Kernel Race, SuDump, and a Chrome Garbage Collector Bug [Exploit Dev/VR]

   Published: 28/10/2021
6. A Slack Attack and a MySQL Scientific Notation Bug [Bug Hunting]

   Published: 26/10/2021
7. WebKit Bugs, a Windows Race, and House of IO Improved [Exploit Dev/VR]

   Published: 21/10/2021
8. WebSocket Hijacking, GitHub review bypass and SQLi to RCE [Bug Hunting]

   Published: 19/10/2021
9. HyperKit Bugs & an Open5GS Stack Overflow [Binary Exploitation]

   Published: 14/10/2021
10. SharePoint RCE & an Apache Path Traversal [Bug Hunting]

    Published: 12/10/2021
11. Chrome Exploits and a Firefox Update Bug [Binary Exploitation]

    Published: 7/10/2021
12. Gatekeeper Bypass, Opera RCE, and Prototype Pollution [Bounty Hunting]

    Published: 5/10/2021
13. Kernel UAFs and a Parallels VM Escape [Binary Exploitation]

    Published: 30/09/2021
14. iOS 0days, Apache Dubbo RCEs, and NPM bugs [Bounty Hunting]

    Published: 29/09/2021
15. A Curl UAF, iPhone FORCEDENTRY, and a Crazy HP OMEN Driver [Binary Exploitation]

    Published: 23/09/2021
16. A Flickr CSRF, GitLab, & OMIGOD, Azure again? [Bounty Hunting]

    Published: 21/09/2021
17. NETGEAR smart switches, SpookJS, & Parallels Desktop [Binary Exploitation]

    Published: 16/09/2021
18. Reused VMWare exploits & Escaping Azure Container Instances [Bounty Hunting]

    Published: 14/09/2021
19. Escaping the Bhyve, WhatsApp, & BrakTooth [Binary Exploitation]

    Published: 9/09/2021
20. Takeover A Facebook, SnapChat or JetBrains Account [Bounty Hunting]

    Published: 7/09/2021