Agarri: Offensive information security

Recently published vulnerabilities [+]

Adobe Reader: Multiple memory corruptions during XSLT processing (APSB 17-11)
Firefox: Multiple UAF during XSLT processing (MFSA 2017-10)
Revive Adserver: Arbitrary PHP deserialization (REVIVE-SA-2017-001)
Adobe Reader: Multiple memory corruptions during XSLT processing (APSB 17-01)
Firefox: UAF during XSLT processing (MFSA 2017-01)

RT @1ns0mn1h4ck: We have just opened the CFP for Insomni'hack 2020! You can submit your proposals here : https://t.co/TfpzSaoavy Looking…
1. Sat Oct 19 08:10:58 2019
RT @bbuerhaus: A Tale of Exploitation in Spreadsheet File Conversions - Researching exploitation in headless document conversion in LibreOf…
1. Fri Oct 18 22:15:42 2019
@TheParanoids Nice move regarding the banana server! 👍👍👍
1. Thu Oct 17 19:11:41 2019
RT @securitum_com: Our guy, @SecurityMB, had a presentation at OWASP Poland Day about exploiting prototype pollution to RCE on the example…
1. Thu Oct 17 12:42:38 2019
RT @abaranov: For anyone interested in starting their own business, this slide deck is packed full of information that shouldn't be given a…
1. Thu Oct 17 10:34:39 2019

Nearly generic fuzzing of XML-based formats
1. Nullcon (March 2017 - Goa - IN - slides - video)
Server-side browsing considered harmful
1. Hackfest (November 2015 - CA - video (FR))
2. Hack in Paris (June 2015 - FR)
3. HackPra Allstars - OWASP AppSec EU (May 2015 - NL - slides - video)
Hunting for top bounties
1. OWASP CZ (December 2014 - CZ)
2. ZeroNights (November 2014 - RU - slides)
3. Hacktivity (October 2014 - HU - video)