Agarri: Offensive information security

Recently published vulnerabilities [+]

Adobe Reader: Multiple memory corruptions during XSLT processing (APSB 17-11)
Firefox: Multiple UAF during XSLT processing (MFSA 2017-10)
Revive Adserver: Arbitrary PHP deserialization (REVIVE-SA-2017-001)
Adobe Reader: Multiple memory corruptions during XSLT processing (APSB 17-01)
Firefox: UAF during XSLT processing (MFSA 2017-01)

RT @0xdea: @ParchmentScroll @thegrugq 👆 https://t.co/RmRlgDOYjc
1. Thu Jul 29 14:30:43 2021
RT @billmarczak: THREAD with a couple of interesting bits from @AmnestyTech's new report on what they learned from looking for NSO Group's…
1. Thu Jul 29 12:57:21 2021
RT @xxdesmus: From Stolen Laptop to Inside the Company Network https://t.co/iZj9M9OKsG https://t.co/VjhmTeUPBA
1. Thu Jul 29 11:52:04 2021
@FlorentE_ I think that I will wait for my CC payement processor (aka @stripe) to accept them... 🤷‍♂️
1. Thu Jul 15 17:21:39 2021
"Joy is a people's right. Money cannot be the barrier between those who have fun and those who cannot have fun." ✊ https://t.co/AJ4Iri1xp1
1. Thu Jul 15 14:32:40 2021

Nearly generic fuzzing of XML-based formats
1. Nullcon (March 2017 - Goa - IN - slides - video)
Server-side browsing considered harmful
1. Hackfest (November 2015 - CA - video (FR))
2. Hack in Paris (June 2015 - FR)
3. HackPra Allstars - OWASP AppSec EU (May 2015 - NL - slides - video)
Hunting for top bounties
1. OWASP CZ (December 2014 - CZ)
2. ZeroNights (November 2014 - RU - slides)
3. Hacktivity (October 2014 - HU - video)