High frequency security bug hunting: 120 days, 120 bugs · July 29, 2016

Using ngrok to proxy internal servers in restrictive environments · November 18, 2015 · security ngrok pentesting

Abusing URL Shortners to discover sensitive resources or assets · September 22, 2015 · websec bruteforce

Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions · July 16, 2015 · websec security tool

Security for young people in Australia · May 13, 2015 · security personal australia students

Exploiting Markdown Syntax and Telescope Persistent XSS through Markdown (CVE-2014-5144) · February 7, 2015 · markdown xss CVE-2014-5144

Introducing Websec Weekly · January 6, 2015 · websec bugbounty websec weekly

Breaking International Voicemail Security via VVM Exploitation · October 19, 2014 · research voicemail vvm bruteforce