Aug 14, 2019
Upon cleaning out some boxes of old wires and techjunk I’d completely forgotten about for years, I came across an old netbook my dad had owned. Netbooks were all the rage back in 2009. One of the pioneers of the netbook revolution was
I managed to get the chance to participate in Pwn2Own 2019 this year, having joined F-Secure two months ago. In total we had 4 entries: TP-Link AC1750 Smart WiFi Router - LAN -
OverviewA heap overflow exists in the Autodesk FBX SDK (<= 2019.2) when an FBX file's header is parsed. This post shows how exploitation of this vulnerability can take place. Exploitation has been
Upon cleaning out some boxes of old wires and techjunk I’d completely forgotten about for years, I came across an old netbook my dad had owned. Netbooks were all the rage back
Contents: IntroductionBypassing Basic HTTPSBypassing 301 CachingBypass non-preloaded HSTS through NTPBypassing Preloaded HSTS through logic errorsCookie DomainsExploiting with MiTM on DNSExploiting without MiTM on DNSIntroductionThe old ways are dead. Gone are the days where
I’ve spent a lot of my time doing security bits ‘n bobs for a large takeaway EPOS company. Usually this entails a full review all every repository to patch SQL injection vulnerabilities,