Why I Keep a Brag Document — and How It Can Help You
Because the fact is, it’s easy to have your work go unnoticed. Sure, as Engineers, we see our faces move...
Read more →Category: Mix
HackerOne Company Values Matter: Win as a Team
Each year, HackerOne employees nominate peers to receive the covetable Values Awards. Since its inception in 2022, the Values Awards...
Read more →
Actually Good Multimodal AI · Joseph Thacker
OpenAI just made a big move in the AI space with the release of GPT-4o (“o” stands for “omni”). This...
Read more →
One Apple Fanboy’s White-hot Anger at the iPad Commercial
Before I go into this, I want to articulate exactly how much of an Apple fanboy I am. I camped...
Read more →
My OpenAI Event Predictions (May 2024)
I don’t have any insider knowledge—unless you count the Information article that just leaked about a possible Her-like assistant—but I...
Read more →
How to Find Remote Code Execution on WordPress [Example]
In this article, we’ll talk about a critical bug report where a hacker found a Remote Code Execution (RCE) on Nextcloud’s...
Read more →
Kata Containers – Improper file permissions for read-only volumes
An improper file permissions vulnerability affects Kata Containers prior to 1.11.5. When using a Kubernetes hostPath volume and mounting either...
Read more →
Exploit Archeology – Exploiting an old unknown Server Side Browser
I was recently hacking on a Bug Bounty target and identified an interesting API endpoint which would render user supplied...
Read more →
ZAP 2.15 Review ⚡️ | HAHWUL
ZAP 2.15가 릴리즈되었습니다. OWASP를 나오는 이슈로 인해 2.14가 빠르게 출시됬던 상태라 2.15까지의 기간 또한 짧았네요. 오늘은 2.15 버전에 대해 빠르게...
Read more →
Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHub
Impact When using --userns-remap, if the root user in the remapped namespace has access to the host filesystem they can...
Read more →
ISO 27001 and Pentesting: What You Need to Know
Today, most organizations have some level of information security, but often it consists of point solutions deployed independently and operating...
Read more →
Container security: Privilege escalation bug patched in Docker Engine
Adam Bannister 09 February 2021 at 12:47 UTC Updated: 09 February 2021 at 12:59 UTC ‘An odd one, impact wise’...
Read more →