Disclosure

A collection of 2 posts

CVE-2020-10560 - OSSN Arbitrary File Read

CVE-2020-10560 - OSSN Arbitrary File Read

Exploiting Arbitrary file read and poor crypto in OSSN.

Full Story

Security Onion Command Injection Vulnerability

Security Onion Command Injection Vulnerability

Disclosing a command injection in CapMe / Security Onion

Full Story

Recent Posts

Analysing an O.MG cable

Setting up an O.MG cable for keystroke injection attacks, and then forensically dumping the firmware for analysis.

Wagtail XSS + LocalStorage = Account Hijack

Every now and then I like to do a little bit of bug hunting in

Imperva WAF Bypass

XSS and bypassing an Imperva WAF with JSFuck