I almost can't believe it, but I am finally releasing my Gitbook about CTF and Hacking, which is a year in the making. It contains many tricks, explanations, and resources from my experience and research. I hope it becomes a valuable resource for everyone!

RT @kevin_mizu: I'm very happy to finally share the second part of my DOMPurify security research 🔥 This article mostly focuses on DOMPuri…

RT @ruben_v_pina: form-action Content Security Policy Bypass This bypass can help you turn those unexploitable XSS bugs into exploitable v…

@Rhynorater @garethheyes @kinugawamasato Next up: alert() in CSS!

@ankursundara @x3ctf @EhhThing Yes! That was an awesome challenge, I also link to it in my writeup. That was the inspiration for abusing crashes, and I just found that is possible to leak cross-site

We all use tools while pentesting, but what if these tools are vulnerable themselves? We found multiple high vulnerabilities in PwnDoc and its libraries docx-templater & angular-expressions. My favorites are the JavaScript templating sandbox escape tricks!

RT @slonser_: In 2024, I interacted a lot with Extensions. I decided to create a resource that will help with a basic understanding of ext…

My colleague is organizing the first ever BSides in Groningen, Netherlands! This is a community-driven event taking place May 2nd. If you have a cool story or piece of research for a talk and want to attend, be sure to submit to the Call for Presentations:

RT @albinowax: Voting is now live for the Top Ten (New) Web Hacking Techniques of 2024! Browse the nominations & cast your votes here: http…

I loved playing with team Superflat during the IrisCTF 2025 last weekend, where we ended up in 4th place. The challenge I enjoyed most was about a cool DNS Rebinding technique with a cache, and learning some Java/Kotlin along the way!

@UK_Daniel_Card To be honest a lot of my client-side attacks require the victim to get on my site. Making them click a link seems like a pretty good way to do that. You don't need a Chrome RCE, sometimes CSRF/Reflected XSS is enough

RT @ctbbpodcast: We had some delays in the video version of the pod this week, but the latest episode is up on YouTube now. We covered a b…

Just arrived at #38C3, just as excited as I was last year 🙌

@garethheyes @terjanq I've noticed on Chrome it sometimes needs a bit of convincing by repeating the escape sequences a few times. Learned this from @LooseSecurity's challenge:

Have you tried my december XSS challenge? The solution's public now in this writeup! It includes two vulnerabilities in CodeIgniter that abuse the cache storage format and bypass its builtin XSS filter. Merry Christmas! 🎄

RT @intigriti: As a final hint, we'll give you our plan to save Christmas! First, look into this mysterious "cache" to find an escape rout…

@disclosedh1 Blog post incoming :D

RT @S1r1u5_: Imagine opening a Discord message and suddenly your computer is hacked. We discovered a bug that made this possible and earne…

Good luck and have fun!

RT @YNizry: 🧬🔬 I wrote about this finding a bit more extensively in my blog: #mXSS #XSS