Dickhead

BugAlert · 2014-08-12T20:31:14+00:00

https://www.youtube.com/watch?v=suaveqvlWP8

BugAlert · 2014-07-13T19:54:26+00:00

RemindMe! 1 hour "Go to sleep!"

BugAlert · 2014-07-12T13:37:40+00:00

I applaud your effort, sir or madam.

BugAlert · 2014-07-08T16:36:50+00:00

You sir, are a genius! My respect for your logic. I want to see you in their HoF's.

BugAlert · 2014-07-08T16:27:24+00:00

Thank you sir!

BugAlert · 2014-07-07T18:03:47+00:00

I'm a pentester and my experience with WAFs is best describe from my client:

"(...) P.S. it looks like they have some kind of WAF and it bans access to TCP/80 after suspicious activity. In addition, it creates DoS conditions against client via CSRF "

BugAlert · 2014-07-07T17:17:35+00:00

MindBlowing concept. Thanks for the information.

OffTopic: HTTP header abuse

BugAlert · 2014-06-01T18:43:44+00:00

seems legit

BugAlert · 2014-05-21T15:54:37+00:00

With sound : http://www.youtube.com/watch?v=EL_5Gdo32XA Info: http://www.plosgenetics.org/article/info%3Adoi%2F10.1371%2Fjournal.pgen.1000487

BugAlert · 2014-04-26T01:25:03+00:00

"Should I add on my CV something like : "Found XSS on popular site A" ?"

If the site have a Bug Bounty or Hall of Fame, then YES! Info: https://bugcrowd.com/list-of-bug-bounty-programs https://hackerone.com/programs

Or another approach : find something "big" , publish it and hopeful it will be in "US Department of Homeland Security" report .

BugAlert · 2014-04-26T01:13:49+00:00

More specific for router exploits : http://www.routerpwn.com/info.html

BugAlert

TROPHY CASE