Agarri: Offensive information security

Recently published vulnerabilities [+]

Adobe Reader: Multiple memory corruptions during XSLT processing (APSB 17-11)
Firefox: Multiple UAF during XSLT processing (MFSA 2017-10)
Revive Adserver: Arbitrary PHP deserialization (REVIVE-SA-2017-001)
Adobe Reader: Multiple memory corruptions during XSLT processing (APSB 17-01)
Firefox: UAF during XSLT processing (MFSA 2017-01)

RT @aloria: Stop making how much you drink coffee into a personality trait and have a glass of water and a nap, nerds.
1. Fri Jun 25 10:11:34 2021
Signed a message with GPG. Got a crash. Can't reproduce. 🤬 https://t.co/Hle8IZ12ox
1. Fri Jun 25 07:19:10 2021
As the saying goes, « Quis custodiet ipsos custodes? ». Another investigation by @RektHQ https://t.co/IRmFpF5M1M https://t.co/2j2DlaCJ0L
1. Thu Jun 24 15:08:11 2021
RT @albinowax: Fancy a free scholarship pass to Black Hat USA? Reply with your favourite obscure web security research post, and I'll give…
1. Thu Jun 24 12:54:39 2021
@Tweekay Bah, c’est des graines pour la plante, et du tissu pour le pot. Il reste le substrat de culture, la lumièr… https://t.co/gw0KM9RmFw
1. Wed Jun 23 19:56:55 2021

Nearly generic fuzzing of XML-based formats
1. Nullcon (March 2017 - Goa - IN - slides - video)
Server-side browsing considered harmful
1. Hackfest (November 2015 - CA - video (FR))
2. Hack in Paris (June 2015 - FR)
3. HackPra Allstars - OWASP AppSec EU (May 2015 - NL - slides - video)
Hunting for top bounties
1. OWASP CZ (December 2014 - CZ)
2. ZeroNights (November 2014 - RU - slides)
3. Hacktivity (October 2014 - HU - video)