Day[0]

259 Episodo

1. Rust in the Web? A Special Guest and some Bad Crypto [Bounty Hunting]

   Publicado: 16/11/2021
2. A too trusty TrustZone and a few Linux Kernel bugs [Binary Exploitation]

   Publicado: 11/11/2021
3. A MacOS SIP Bypass & an XSS Fiesta [Bounty Hunting]

   Publicado: 9/11/2021
4. Type Confusion in Android NFC, PHP-FPM Local Privilege Escalation, and CallbackHell [Binary Exploitation]

   Publicado: 4/11/2021
5. Discourse SNS RCE, a Stored XSS in GitLab, and a Reddit Race Condition [Bug Hunting]

   Publicado: 2/11/2021
6. A Kernel Race, SuDump, and a Chrome Garbage Collector Bug [Exploit Dev/VR]

   Publicado: 28/10/2021
7. A Slack Attack and a MySQL Scientific Notation Bug [Bug Hunting]

   Publicado: 26/10/2021
8. WebKit Bugs, a Windows Race, and House of IO Improved [Exploit Dev/VR]

   Publicado: 21/10/2021
9. WebSocket Hijacking, GitHub review bypass and SQLi to RCE [Bug Hunting]

   Publicado: 19/10/2021
10. HyperKit Bugs & an Open5GS Stack Overflow [Binary Exploitation]

    Publicado: 14/10/2021
11. SharePoint RCE & an Apache Path Traversal [Bug Hunting]

    Publicado: 12/10/2021
12. Chrome Exploits and a Firefox Update Bug [Binary Exploitation]

    Publicado: 7/10/2021
13. Gatekeeper Bypass, Opera RCE, and Prototype Pollution [Bounty Hunting]

    Publicado: 5/10/2021
14. Kernel UAFs and a Parallels VM Escape [Binary Exploitation]

    Publicado: 30/9/2021
15. iOS 0days, Apache Dubbo RCEs, and NPM bugs [Bounty Hunting]

    Publicado: 29/9/2021
16. A Curl UAF, iPhone FORCEDENTRY, and a Crazy HP OMEN Driver [Binary Exploitation]

    Publicado: 23/9/2021
17. A Flickr CSRF, GitLab, & OMIGOD, Azure again? [Bounty Hunting]

    Publicado: 21/9/2021
18. NETGEAR smart switches, SpookJS, & Parallels Desktop [Binary Exploitation]

    Publicado: 16/9/2021
19. Reused VMWare exploits & Escaping Azure Container Instances [Bounty Hunting]

    Publicado: 14/9/2021
20. Escaping the Bhyve, WhatsApp, & BrakTooth [Binary Exploitation]

    Publicado: 9/9/2021