10 December 2024
An offensive Rust encore
“Give me alchemy, give me wizardry, […]
26 November 2024
Extending Burp Suite for fun and profit – The Montoya way – Part 8
Setting up the environment + Hello […]
19 November 2024
Extending Burp Suite for fun and profit – The Montoya way – Part 7
Setting up the environment + Hello […]
13 November 2024
Fault Injection – Down the Rabbit Hole
Intro This series of articles describes […]
30 October 2024
An analysis of the Keycloak authentication system
Earlier this year, I was working […]
3 September 2024
Learning Rust for fun and backdoo-rs
“Launch the Polaris The end doesn’t […]
30 July 2024
Extending Burp Suite for fun and profit – The Montoya way – Part 6
Setting up the environment + Hello […]
19 June 2024
Extending Burp Suite for fun and profit – The Montoya way – Part 5
Setting up the environment + Hello […]
26 March 2024
Frida on Java applications and applets in 2024
As explained in Federico‘s latest article, […]
8 February 2024
Java applet + serialization in 2024! What could go wrong?
Recently, during a red team engagement […]
11 January 2024
A collection of weggli patterns for C/C++ vulnerability research
“No one cares about the old […]
28 November 2023
Big update to my Semgrep C/C++ ruleset
“The attack surface is the vulnerability. […]