Gaining access to Uber's user data through AMPScript evaluation · January 14, 2019

High frequency security bug hunting: 120 days, 120 bugs · July 29, 2016

Using ngrok to proxy internal servers in restrictive environments · November 18, 2015 · security ngrok pentesting

Abusing URL Shortners to discover sensitive resources or assets · September 22, 2015 · websec bruteforce

Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions · July 16, 2015 · websec security tool

Security for young people in Australia · May 13, 2015 · security personal australia students

Exploiting Markdown Syntax and Telescope Persistent XSS through Markdown (CVE-2014-5144) · February 7, 2015 · markdown xss CVE-2014-5144

Introducing Websec Weekly · January 6, 2015 · websec bugbounty websec weekly