A step by step guide how to hack webhooks
Practical guide for hunters and defenders: hunting webhooks, detection, PoC examples and mitigations.
Typosquat Detective : a tiny game to train your eye
A 2-minute browser game to practice spotting typosquatted domains numbers for letters, Unicode homoglyphs and Punycode.
Why Relying on LLMs for Code Can Be a Security Nightmare
LLM generated code can ships demo logic with security issues not defenses. Here is a real world example and how it could be abused.
How I Discovered a Libpng Vulnerability 11 Years After It Was Patched
A beginner’s journey into secure code review, and how I accidentally rediscovered an 11-year-old vulnerability in libpng.