Day[0]

281 Episodes

1. Big Bounties by Exploiting WebKit's CSP & Concrete CMS Bugs [Bounty Hunting]

   Published: 11/23/2021
2. DDR4 Rowhammer, Azure Bugs, "Essential 0days", and Backdoored IDA [Binary Exploitation]

   Published: 11/18/2021
3. Rust in the Web? A Special Guest and some Bad Crypto [Bounty Hunting]

   Published: 11/16/2021
4. A too trusty TrustZone and a few Linux Kernel bugs [Binary Exploitation]

   Published: 11/11/2021
5. A MacOS SIP Bypass & an XSS Fiesta [Bounty Hunting]

   Published: 11/9/2021
6. Type Confusion in Android NFC, PHP-FPM Local Privilege Escalation, and CallbackHell [Binary Exploitation]

   Published: 11/4/2021
7. Discourse SNS RCE, a Stored XSS in GitLab, and a Reddit Race Condition [Bug Hunting]

   Published: 11/2/2021
8. A Kernel Race, SuDump, and a Chrome Garbage Collector Bug [Exploit Dev/VR]

   Published: 10/28/2021
9. A Slack Attack and a MySQL Scientific Notation Bug [Bug Hunting]

   Published: 10/26/2021
10. WebKit Bugs, a Windows Race, and House of IO Improved [Exploit Dev/VR]

    Published: 10/21/2021
11. WebSocket Hijacking, GitHub review bypass and SQLi to RCE [Bug Hunting]

    Published: 10/19/2021
12. HyperKit Bugs & an Open5GS Stack Overflow [Binary Exploitation]

    Published: 10/14/2021
13. SharePoint RCE & an Apache Path Traversal [Bug Hunting]

    Published: 10/12/2021
14. Chrome Exploits and a Firefox Update Bug [Binary Exploitation]

    Published: 10/7/2021
15. Gatekeeper Bypass, Opera RCE, and Prototype Pollution [Bounty Hunting]

    Published: 10/5/2021
16. Kernel UAFs and a Parallels VM Escape [Binary Exploitation]

    Published: 9/30/2021
17. iOS 0days, Apache Dubbo RCEs, and NPM bugs [Bounty Hunting]

    Published: 9/29/2021
18. A Curl UAF, iPhone FORCEDENTRY, and a Crazy HP OMEN Driver [Binary Exploitation]

    Published: 9/23/2021
19. A Flickr CSRF, GitLab, & OMIGOD, Azure again? [Bounty Hunting]

    Published: 9/21/2021
20. NETGEAR smart switches, SpookJS, & Parallels Desktop [Binary Exploitation]

    Published: 9/16/2021