Agarri : Sécurité informatique offensive

Vulnérabiliés récentes [+]

Adobe Reader : Multiples corruptions lors d'un traitement XSLT (APSB 17-11)
Firefox: Multiples UAF lors d'un traitement XSLT (MFSA 2017-10)
Revive Adserver : Désérialisation PHP arbitraire (REVIVE-SA-2017-001)
Adobe Reader : Multiples corruptions lors d'un traitement XSLT (APSB 17-01)
Firefox : UAF lors d'un traitement XSLT (MFSA 2017-01)

RT @revskills: Analysis of the Evidence of Surveillance of Mr. Bezos’ personal phone [PDF] https://t.co/vBss2aGPD4
1. Wed Jan 22 18:55:56 2020
RT @microsvuln: ApplicationInspector - source code analyzer by Microsoft https://t.co/ovuI9nYiZx #codereview
1. Wed Jan 22 18:40:06 2020
@healthyoutlet @Gromak123_Sec @_titon_ https://t.co/IV4ua7wRhY
1. Wed Jan 22 15:21:26 2020
🎉🎉🎉 https://t.co/CwvqXVmf0C
1. Tue Jan 21 21:03:10 2020
@ncnx700 Another option: test each offset independently, using two positions (i.e. password[$$] == $$) with Battering ram + Numbers
1. Tue Jan 21 20:59:41 2020

Nearly generic fuzzing of XML-based formats
1. Nullcon (mars 2017 - Goa - IN - slides - video)
Server-side browsing considered harmful
1. Hackfest (novembre 2015 - CA - video (FR))
2. Hack in Paris (juin 2015 - FR)
3. HackPra Allstars - OWASP AppSec EU (Mai 2015 - NL - slides - video)
Hunting for top bounties
1. OWASP CZ (décembre 2014 - CZ)
2. ZeroNights (novembre 2014 - RU - slides)
3. Hacktivity (octobre 2014 - HU - video)