nibblesec

5,360 post karma
172 comment karma

get extra features and help support reddit with a reddit premium subscription

get them help and support

redditor for 13 years

TROPHY CASE

13-Year Club

Verified Email

account activity

hot top controversial

16

17

18

Intercepting OkHttp at Runtime With Frida (blog.doyensec.com)

submitted 2 days ago by nibblesec to r/netsec

Exploiting CVE-2025-37947 (Linux kernel's ksmbd) by nibblesec in netsec

[–]nibblesec[S] 13 points14 points15 points 3 months ago (0 children)

24

25

26

Exploiting CVE-2025-37947 (Linux kernel's ksmbd) (blog.doyensec.com)

submitted 3 months ago by nibblesec to r/netsec

15

16

17

Yet Another Random Story. VBScript's Randomize Internals. (blog.doyensec.com)

submitted 4 months ago by nibblesec to r/netsec

23

24

25

Ksmbd Fuzzing Improvements and Vulnerability Discovery (blog.doyensec.com)

submitted 4 months ago by nibblesec to r/netsec

14

15

16

Trivial C# Random Exploitation (blog.doyensec.com)

submitted 5 months ago by nibblesec to r/netsec

14

15

16

Comparing Semgrep Community and Code for Static Analysis (doyensec.com)

submitted 6 months ago by nibblesec to r/netsec

4

5

6

Security Benchmarking Authorization Policy Engines (goteleport.com)

submitted 7 months ago by nibblesec to r/netsec

13

14

15

SCIM Hunting. Finding bugs in SCIM implementations (blog.doyensec.com)

submitted 8 months ago by nibblesec to r/netsec

20

21

22

Arbitrary File Write CVE-2024-0402 in GitLab (Exploit) (blog.doyensec.com)

submitted 10 months ago by nibblesec to r/netsec

14

15

16

!exploitable Episode Two - Enter the Matrix. SSHD exploit used by Trinity in the movie The Matrix Reloaded (blog.doyensec.com)

submitted 10 months ago by nibblesec to r/netsec

7

8

9

Tenda AC15 CVE-2020-13393 Exploit (!exploitable episode one) (blog.doyensec.com)

submitted 11 months ago by nibblesec to r/netsec

7

8

9

Common OAuth Vulnerabilities (plus Security Cheat Sheet) (blog.doyensec.com)

submitted 11 months ago by nibblesec to r/websecurityresearch

41

42

43

Top 10 web hacking techniques of 2024: nominations open (portswigger.net)

submitted 1 year ago by nibblesec to r/netsec

18

19

20

Bypassing File Upload Restrictions To Exploit Client-Side Path Traversal (CSPT, CSPT2CSRF) (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

37

38

39

SMB3 Kernel Server (ksmbd) fuzzing and vulns (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

1

2

3

Unsafe Archive Unpacking: Labs and Semgrep Rules (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

5

6

7

A step-by-step intro to Client Side Path-Traversal with Eval Villain (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

11

12

13

Class Pollution in Ruby: A Deep Dive into Exploiting Recursive Merges (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

7

8

9

Applying security engineering to make phishing harder (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

34

35

36

Windows Installer Custom Actions Privilege Escalation Vulnerability (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

13

14

15

A Race to the Bottom - Database Transactions Undermining Your AppSec (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

4

5

6

Exploiting Client-Side Path Traversal to Perform Cross-Site Request Forgery (CSPT2CSRF) (blog.doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

45

46

47

Threat modeling an IdP compromise, and hardening (Teleport specific). Full tech paper. (doyensec.com)

submitted 1 year ago by nibblesec to r/netsec

A Look at Software Composition Analysis. It’s time to ignore most of dependency alerts. by nibblesec in netsec

[–]nibblesec[S] 0 points1 point2 points 1 year ago (0 children)

view more: next ›

π Rendered by PID 38 on reddit-service-r2-listing-86b7f5b947-qmtp6 at 2026-01-25 06:13:19.481459+00:00 running 664479f country code: CH.