albinowax_ | Dark Hacker News

user:	albinowax_
created:	May 31, 2016
karma:	664
about:	I research novel web attack techniques. More details at https://jameskettle.com/

1.	Drag and Pwnd: Exploiting VS Code with ASCII(portswigger.net) 1 points by albinowax_ 1 year ago \| 0 comments
2.	Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information(embracethered.com) 4 points by albinowax_ 1 year ago \| 0 comments
3.	Chaining Three Bugs to Access All Your ServiceNow Data(assetnote.io) 2 points by albinowax_ 1 year ago \| 0 comments
4.	ORM Leak Vulnerabilities(elttam.com) 1 points by albinowax_ 1 year ago \| 0 comments
5.	Hacking millions of modems and investigating who hacked my modem(samcurry.net) 838 points by albinowax_ 1 year ago \| 271 comments
6.	Getting XXE in Web Browsers Using ChatGPT(swarm.ptsecurity.com) 1 points by albinowax_ 1 year ago \| 0 comments
7.	Response Filter Denial of Service: shut down a website by triggering WAF rule(blog.sicuranext.com) 95 points by albinowax_ 1 year ago \| 26 comments
8.	Source Code Disclosure in Asp.net via Cookieless Sessions(swarm.ptsecurity.com) 1 points by albinowax_ 2 years ago \| 0 comments
9.	ChatGPT Account Takeover via Wildcard Web Cache Deception(nokline.github.io) 4 points by albinowax_ 2 years ago \| 0 comments
10.	Detection and Exploitation of Ivanti's Pulse Connect Secure RCE(assetnote.io) 1 points by albinowax_ 2 years ago \| 0 comments
11.	The curl quirk that exposed Burp Suite and Google Chrome(portswigger.net) 1 points by albinowax_ 3 years ago \| 1 comment