Great experience collaborating with Akamai — the team is incredibly friendly and professional.

Great idea. I usually find fuzzing complete phone numbers quite complex. But this article inspires me to try guessing with a small dataset.

🎉Announcing the latest research from our intern @maikypedia! In it, you'll learn all about Decompression Attacks, get to practice in custom-built labs and get some free @semgrep rules for detecting flaws. Check it out today! https://t.co/we46rcyptw #appsec #doyensec #semgrep

League of Legends is holding me back. I'm only ranked at diamond 2.

Here's my x-correlation/json-injection research also in writing, thank you @ctbbpodcast! https://t.co/px1UcmvUTc

The whitepaper is live! Listen to the whispers: web timing attacks that actually work. Read it here -> https://t.co/cBRLNpOZ6y

New blog! This time a high severity session takeover in Zoom worth $15,000. Read the story of how @sudhanshur705 , @BrunoModificato and I chained 2 completely useless XSS vulns to steal OAuth tokens, hijack browser permissions, and more: https://t.co/qVUgk5shqh

Wow! Thanks for sharing my work @albinowax, it's really nice to see that it's reached your attention. :)

I'm thrilled to announce "Listen to the whispers: web timing attacks that actually work" will premiere at Black Hat USA! After nine months of running bulk timing attacks on thousands of live sites, I've got a lot to share :D #BHUSA @BlackHatEvents https://t.co/YsrfM0SUm7

A public service announcement about #CVE-2024-4367 that we found in one of our pentests at Codean Labs. Make sure to update your #Firefox version to 126 and for #developers to update your PDF.js dependency. You can read our blog post for all details. https://t.co/4hJ0kSh87r

Enjoy our next blog post this time an SQL Injection on Apple’s Infra. Another win nets us a $25,000 bounty! 💻💰 #AppleSecurity #Research #bugbountytips #bugbounty https://t.co/p09IH8bE86

Check out my write-up on a seemingly harmless and limited send() in GitHub (CVE-2024-0200) and how it could be used to obtain environment variables from a production container and to achieve remote code execution in GitHub Enterprise Server: https://t.co/jmjTTOxEGY

Hong Kong

Just published a writeup on my account takeover vulnerability in ChatGPT, using a really cool web cache deception technique. Waited a while to finally publish this, enjoy :) https://t.co/P1vHoSzABX

Another great post on hoisting by @brutelogic! Missed this one when doing my own research. Interestingly the payload from my post work on the second example (undefined2.php) without hijacking atob %27-alert(1));function%20myObj(){}// https://t.co/c9z6NdvAXw

Why is the highest severity of full-read ssrf with high impact only p2 on the @Bugcrowd platform? 😭

🧙‍♂️ CVE-2022-44268 - a vulnerability in ImageMagick that could lead to an arbitrary file read. How does it work? See here 👇

New XSS platform released. Support using your own domain name. Support webhook. Mates with the burpsuite extension to log the full request that triggers xss. For more, please visit. https://t.co/WtUhwVFo0j #xsshunter #xss #hackerone #bugbounty #bugcrowd #bugbountytip #burpsuite

Arbitrary cache poisoning on all Akamai websites via 'Connection: Content-Length' - $50k in bounties well-earned by @jacopotediosi https://t.co/UmlKIGsgWR https://t.co/OFHGMVA2gP

Hacking Google Drive integrations with a case study involving the use of CRLF and Request Pipelining to perform SSRF.