Intro In August of this year I found a remote code execution vulnerability in the Elixir-based Paginator open-source project from…
I’ve been very busy these past few months, leaving little time to hack. I’m very glad to be back at…
Questions to be answered: 1. What are some of the risks of technical debt? 2. Should you post private information…
Hi, my name is Alex, I’ve been an IT security professional since 2007 and I’ve recently entered the start-up world…
Exploiting a Blind XSS using Burp Suite Last weekend, I participated to the qualification phase for the “Nuit du Hack…
Salesforce is working with ChatGPT creator OpenAI to add the chatbot sensation to its collaboration software Slack, as well as…
Intruder and CSRF-protected form, without macros In these days, CSRF tokens are more and more prevalent in Web applications. As…
A recap of the Q&A session on Twitter [This article was originally posted in June 2020. It disappeared from the…
National Security Agency (NSA) of the United States has issued some tips to safeguard home networks from cyber attacks and…
HDB Financial Services, the non-bank lending unit of India’s top private lender HDFC Bank, has disclosed a data breach at…
One of LastPass’s engineer neglected to update Plex on their personal computer, which led to the company’s significant breach. Plex…