Security Researcher and Senior Penetration Tester at Shielder.In the office I’m the one with the soldering iron.
Exploiting an old noVNC XSS (CVE-2017-18635) in OpenStack
OpenStack was using an old version of noVNC affected by a DOM-based XSS that allowed attackers to steal VM tokens and take over VMs.
WebTech, identify technologies used on websites
Release of WebTech, a tool for RECON during Penetration Tests that scan websites and identify technologies and frameworks in use.
FridaLab – Writeup
Writeup for the FridaLab challenge with a basic introduction to the Frida toolkit on Android.