A blog about security engineering, research, and general hacking.
© 2018. All rights reserved.
This is a collection of my various projects, including security research, open source projects, etc.
Assessing the Embedded Devices on Your Network
WebBorer: Directory Enumeration in Go
PwnableWeb: Vulnerable Apps & Scoreboard for Teaching
Presentation: The Keys to SSH
Presentation: GnuPG: Open Encryption, Signing and Authentication
Presentation: Drupal: Open Source Content Management
Code Audit: KeePassX
Playing with the Gigastone Media Streamer Plus
TP-Link Kasa App: SSL Verification Disabled (Fixed)
[CVE-2017-17704] Broken Cryptography in iStar Ultra & IP ACM by Software House
Belden Garrettcom 6K/10K Switches: Auth Bypasses, Memory Corruption
Security Issues in Alerton Webtalk (Auth Bypass, RCE)
ObiHai ObiPhone: Multiple Vulnerabilties