Recently published vulnerabilities [+]

• Adobe Reader: Multiple memory corruptions during XSLT processing (APSB 17-11)
• Firefox: Multiple UAF during XSLT processing (MFSA 2017-10)
• Revive Adserver: Arbitrary PHP deserialization (REVIVE-SA-2017-001)
• Adobe Reader: Multiple memory corruptions during XSLT processing (APSB 17-01)
• Firefox: UAF during XSLT processing (MFSA 2017-01)

Upcoming "Burp Suite Pro" trainings [+]

• Insomni'hack Geneva, Switzerland (March, 16th 2020 - March, 18th 2020)
• Hack In The Box Amsterdam, Netherlands (April, 20th 2020 - April, 22nd 2020)
• Northsec Montreal, Canada (May, 11th 2020 - May, 13th 2020)
• Ringzer0 Las Vegas, USA (August, 1st 2020 - August, 4th 2020)
• Ekoparty Buenos Aires, Argentina (September 20th, 2020 - September 22nd 2020)

Recent talks [+]

• Nearly generic fuzzing of XML-based formats
  1. Nullcon (March 2017 - Goa - IN - slides - video)
• Server-side browsing considered harmful
  1. Hackfest (November 2015 - CA - video (FR))
  2. Hack in Paris (June 2015 - FR)
  3. HackPra Allstars - OWASP AppSec EU (May 2015 - NL - slides - video)
• Hunting for top bounties
  1. OWASP CZ (December 2014 - CZ)
  2. ZeroNights (November 2014 - RU - slides)
  3. Hacktivity (October 2014 - HU - video)