Marco Squarcina

@blueminimal

Postdoc researcher / Web security / Capturing flags since '09 w. now / DJ / Also known as lavish

Vienna, AT
Vrijeme pridruživanja: studeni 2013.

Tweetovi

Blokirali ste korisnika/cu @blueminimal

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @blueminimal

  1. proslijedio/la je Tweet
    22. sij

    This is a pretty good reminder that any invasive heuristics in the browser - be it XSS filters or privacy protections - often cause more problems than they address:

    Poništi
  2. proslijedio/la je Tweet
    22. sij

    Apple/Safari Intelligent Tracking Prevention is a mechanism intended to improve privacy. It was found to have privacy vulnerabilities allowing sites to track the user (and fingerprint), and to stealing web browser history of a user. Incredible find.

    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    6. sij

    The top 10 web hacking techniques of 2019 has some new contenders, thanks to community nominations. Keep them coming!

    Poništi
  4. proslijedio/la je Tweet
    11. pro 2019.

    8 funded PhD positions in the doctoral school on Logics and Computer Science at Security and Privacy are among the topics of interest! deadline January 11

    Poništi
  5. proslijedio/la je Tweet
    10. pro 2019.

    I see a lot of complaints in my Twitter stream about academic conferences rejecting papers. I think many somewhat miss the point - a lot of unfair rejections are a direct result of the current incentive structures that generate too many papers and focus them on too few confs.

    Prikaži ovu nit
    Poništi
  6. 3. pro 2019.

    Happy to see that has been embraced by 26 universities this year, this is such a great opportunity for Italian students interested in IT security! p.s. next ECSC will take place here in Vienna hosted by

    Poništi
  7. 27. stu 2019.

    First 21 chars are random uppercase ASCII, while last 10 chars are the flag signature (uppercase hex), see (thx Bushwhackers for pointing this out) Most specific regex should be [A-Z0-9]{21}[A-F0-9]{10}=

    Poništi
  8. proslijedio/la je Tweet
    24. stu 2019.

    We have a great PC committee for the workshop 2020! Thanks to academics and industry researchers who help us! Check it out here and do not miss our CFP (deadline - Dec 20th)

    Poništi
  9. 23. stu 2019.

    9th place at with from & , we involved so many students this year and they loved it! This is my 10th RuCTFe, thank you for all these years ♥️ Gg to Bushwhackers and Corrupted Lights for ruling the scoreboard!

    Poništi
  10. proslijedio/la je Tweet
    8. stu 2019.

    Our paper about TLS vulnerabilities amplification in the web ecosystem won the 3rd place in the European Applied Research Competition, yay!

    Poništi
  11. proslijedio/la je Tweet
    5. stu 2019.

    Last year we had invited you to rule your own boat. So now it's time to go deeper! How about a submarine? The 23rd of November, 10:00UTC, Ocean of the Internet, VPN Sea Don't forget to register your warship!

    Prikaži ovu nit
    Poništi
  12. proslijedio/la je Tweet
    2. stu 2019.

    The registration for the Advent Bonanza CTF 2019 is now open! Come inside, it's warm and cozy next to our challenge-zero bonfire as well ... :D

    Poništi
  13. 24. lis 2019.

    Such a nice organised by for ! This year we scored 3rd place on-site and 15th overall with \o/ Best thing is that we involved ~40 students of our new CTF lecture to play with us, I'm sure the had a blast 🔥

    Poništi
  14. 24. lis 2019.

    From SSI to remote second-order blind SQL injection. This is my extensive write-up of Trees For Future, an amazing web challenge I solved for while playing . Thanks for it! Solved by 2/972 teams

    Poništi
  15. 21. lis 2019.

    Thanks for granting us 5000$ in Google Cloud Platform research credits after submitting a project proposal to It took them less than 1 week to review our request and notify us 👏 /CC

    Poništi
  16. 20. lis 2019.

    That said, as a lecturer who cares about this matter I would be more than happy to receive constructive feedbacks on how to get a more gender-balanced participation in practical IT security courses 🙂 [3/3]

    Prikaži ovu nit
    Poništi
  17. 20. lis 2019.

    She also added that: "to put it in another way, men can't do multi-tasking". Turned out I really ran out of toilet paper today 🤦‍♂️ I think I've just provided more experimental data to support her hypothesis [2/3]

    Prikaži ovu nit
    Poništi
  18. 20. lis 2019.

    I asked one of my female students her opinion on how to promote diversity in CTF-related courses and activities. She told me that working with men is fine because they are focused and don't care about stuff like buying toilet paper 🧻 [1/3]

    Prikaži ovu nit
    Poništi
  19. proslijedio/la je Tweet
    17. lis 2019.

    3rd place in HITB PRO CTF! GG and thanks for the prize ;)

    Poništi
  20. proslijedio/la je Tweet
    16. lis 2019.

    Slides of my presentation at on web-based side-channel leaks that can be abused to perform XS-Leaks attacks (and how to defend against them):

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·