Erlend Oftedal
@webtonull
Followers
4K
Following
11K
Media
443
Statuses
11K
Security researcher at Crosspoint Labs. AppSec. Tweets are my own and do not express the opinion of my employer. OWASP. retire.js
Oslo, Norway
Joined January 2008
RT @OsloBSides: It's 2025!.šļø We have a date: October 30th. š¢ We have a CFP: š We have a website: .
0
5
0
Reminder that the Call for Presentations for Sikkerhetsfestivalen (The Security Festival) is open. OWASP Oslo is hosting an AppSec track. Scroll down the page for English version:.
0
0
0
RT @ThomasArdal: I've made a new Azure DevOps extension that runs Retire.js as part of a build pipeline. Retire.js will detect vulnerable Jā¦.
marketplace.visualstudio.com
Extension for Azure DevOps - An Azure DevOps task to run Retire.js.
0
1
0
RT @ryanchenkie: ā ļø Developers, please be careful when installing Homebrew. Google is serving sponsored links to a Homebrew site clone thaā¦.
0
3K
0
The CFP for the developer conference NDC Oslo closes today. Security talks of course also very welcome.
0
3
6
#BallonDor . Caroline Graham Hansen: 32 goals, 28 assists, average score 8.4.Aitana Bonmati: 19 goals, 18 assists, average score 8.0. Okā¦.
1
0
3
Back when I found an XSS in the Wifi Pineapple admin GUI by creating a wifi called "</textarea>" + XSS vector š
0
0
7
RT @rebane2001: new blogpost time!!. this one's a fun writeup on a vulnerability chain i found across multiple google services that earnedā¦.
lyra.horse
A writeup of my $4133.70 Google Drive vulnerability chain.
0
170
0
The CFP for NDC Security in Oslo, Norway is about to run out! Submit your talk today!.
ndcsecurity.com
NDC Security 2026 is a 4-Day Event for Software Developers with a focus on Security. 2-5 March 2026 - Radisson Blu Scandinavia Hotel.
0
0
1
RT @mkonda: Not to mention the staff like Kelly and Dawn and some of the old school folks like Laura Grau and Kate Hartmann. They were amaā¦.
0
1
0
Great research from Gareth! You should be really restrictive in which characters you allow in email adresses. Ignore the RFC and restrict to what you actually need (allow as few special chars as possible).
Everyone knows that the RFCs for email addresses are crazy. This post will show without doubt that you should not be following the RFC.
0
0
2
RT @OsloBSides: How's your summer? Come up with any swell ideas? Our CFP is still open, and you have until August 11 to submit it https://tā¦.
docs.google.com
Our Call for Presenters is open through August 11th. We value human creativity and human-generated content. We will reject any clearly AI-generated submissions. If you have any questions about our...
0
5
0
Youāre welcome, Southgate.
1
0
3
RT @degargoyle: This is Jimmy Zhong. This guy made $3.4 billion and hid it in a Cheetos popcorn tin. Just one mistake, and he lost EVERYTHIā¦.
0
2K
0
RT @OsloBSides: We're out of hibernation and gearing up for this year's event! The date is October 14th 2024 with more details to follow, bā¦.
docs.google.com
Our Call for Presenters is open through August 11th. We value human creativity and human-generated content. We will reject any clearly AI-generated submissions. If you have any questions about our...
0
1
0
The Ā«new facebook profiles for people not using their real nameĀ» are super usefulā¦ for spam.
0
0
2