Blog

I blog occasionally about information security. Most of my posts detail my vulnerability research and writeups of bug bounty or responsible disclosures. I sometimes compete in Capture the Flag competitions and will post writeups of past events.

2021

• Colorhunt.co Reflective Cross-Site Scripting (XSS) via Pallet Type
  Category: Vulnerability Research  Aug, 2021
• CVE-2021-35956 AKCP sensorProbe - 'Multiple' Cross Site Scripting (XSS)
  Category: Vulnerability Research  Jun, 2021
• MonkeyType Stored Cross-Site Scripting Vulnerability Disclosure
  Category: Vulnerability Research  May, 2021
• PHP TimeClock 1.04 SQLi/XSS Disclosure
  Category: Vulnerability Research  May, 2021
• CVE-2021-3441 - HP Officejet 4630 Vulnerbility Disclosure
  Category: Vulnerability Research  Apr, 2021
• Considering the Plausibility of IDN Homograph Attacks on iOS
  Category: Vulnerability Research  Apr, 2021
• Blocky, Hack the Box CTF Walkthrough
  Category: ctf  Mar, 2021
• Bashed, Hack the Box CTF Walkthrough
  Category: ctf  Mar, 2021
• Optimum, Hack the Box CTF Walkthrough
  Category: ctf  Mar, 2021
• Jerry, Hack the Box CTF Walkthrough
  Category: ctf  Mar, 2021
• Blue, Hack the Box CTF Walkthrough
  Category: ctf  Mar, 2021
• Legacy, Hack the Box CTF Walkthrough
  Category: ctf  Jan, 2021
• Lame, Hack the Box CTF Walkthrough
  Category: ctf  Jan, 2021
• Passing the eJPT Certification
  Category: certifications  Jan, 2021

2020

• Hinge Hackerone Writeup
  Category: Vulnerability Research  Nov, 2020
• Creating my first CTF Challenge
  Category: ctf  Oct, 2020
• VulnUni CTF Writeup
  Category: ctf  Oct, 2020
• Hackeme CTF Writeup
  Category: ctf  Oct, 2020