19 November 2024

Extending Burp Suite for fun and profit – The Montoya way – Part 7

Setting up the environment + Hello […]

13 November 2024

Fault Injection – Down the Rabbit Hole

Intro This series of articles describes […]

30 October 2024

An analysis of the Keycloak authentication system

Earlier this year, I was working […]

3 September 2024

Learning Rust for fun and backdoo-rs

“Launch the Polaris The end doesn’t […]

30 July 2024

Extending Burp Suite for fun and profit – The Montoya way – Part 6

Setting up the environment + Hello […]

19 June 2024

Extending Burp Suite for fun and profit – The Montoya way – Part 5

Setting up the environment + Hello […]

26 March 2024

Frida on Java applications and applets in 2024

As explained in Federico‘s latest article, […]

8 February 2024

Java applet + serialization in 2024! What could go wrong?

Recently, during a red team engagement […]

11 January 2024

A collection of weggli patterns for C/C++ vulnerability research

“No one cares about the old […]

28 November 2023

Big update to my Semgrep C/C++ ruleset

“The attack surface is the vulnerability. […]

24 October 2023

Customizing Sliver – Part 3

In this third and final post […]

24 October 2023

Customizing Sliver – Part 2

Hello! This is the second part […]