What Happens to Content When Top-Tier Presentation is Commoditized?
I think AI is about to massively improve the quality of our best content. But not for the reason you...
Read more →Category: Mix
Thoughts on the Eliezer vs. Hotz AI Safety Debate
The debate was quite fun to watch, but also frustrating. What irked me about the debate—and all similar debates—is that...
Read more →
Punicoder – discover domains that are phishing you – honoki
So we’re seeing homograph attacks again. Examples show how ‘apple.com’ and ‘epic.com’ can be mimicked by the use of Internationalized...
Read more →
RCE in Slanger, a Ruby implementation of Pusher – honoki
While researching a web application last February, I learned about Slanger, an open source server implementation of Pusher. In this...
Read more →
Bug Bytes #209 – The only graphQL wordlist you need, ML bug hunting and VDP submissions
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by...
Read more →
I’ve Got You Under My Skin, Bill Evans Solo Transcription – honoki
Download my transcription of Bill Evans’ piano solo in I’ve Got You Under My Skin below. The solo starts around...
Read more →
Burp ♥ OpenVPN – honoki
When performing security tests, you will often be required to send all of your traffic through a VPN. If you...
Read more →
XXE-scape through the front door: circumventing the firewall with HTTP request smuggling
In this write-up, I want to share a cool way in which I was able to bypass firewall limitations that...
Read more →
how I bruteforced my way into your Active Directory – honoki
Last May, I discovered that a critical vulnerability I had reported earlier this year had resulted in my first CVE....
Read more →
yet another Bug Bounty Reconnaissance Framework – honoki
An example use case of bbrf, here integrating with subfinder from projectdiscovery.io Like anyone involved in bug bounty hunting, I...
Read more →
WILSON Cloud Respwnder – honoki
If you’re a Burp Suite user, you’ll be familiar with Burp Collaborator: a service that allows you to monitor out-of-band...
Read more →
Axel Springer National Media & Tech launches a public bug bounty program on Intigriti
Axel Springer has long been a pioneer in the digital publishing industry, with a vast portfolio of brands, such as...
Read more →