Michał Bentkowski

@SecurityMB

Penetration testing, bounty hunting

Poland
Vrijeme pridruživanja: rujan 2014.

Tweetovi

Blokirali ste korisnika/cu @SecurityMB

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @SecurityMB

  1. Prikvačeni tweet
    14. sij

    Wow, four blog posts of mine are included in the list! - XSS in GMail's AMP4Email via DOM Clobbering - DOMPurify 2.0.0 bypass using mXSS - Exploiting prototype pollution - Security analysis of <portal> element If you like them (or other techniques), please vote!

    Poništi
  2. 2. velj

    So yesterday I got married! Paula is the greatest woman I’ve ever met in my life and I can’t even express how happy and grateful I am that she’s going to be with me for the rest of my life. Thank you very much and I’m sure that we’ll have a happy life together!

    Poništi
  3. proslijedio/la je Tweet
    19. sij

    Solutions to the challenge `WW3` on Any bugs/typos, lemme know :)

    Poništi
  4. proslijedio/la je Tweet
    17. sij

    Ruszyły zapisy na MEGA sekurak hacking party. Cały dzień w sali koncertowej, świeże, praktyczne prezentacje, super networking. Mamy tylko 100 biletów early bird w super cenie!

    Poništi
  5. proslijedio/la je Tweet
    10. sij

    [NEW] Challenge DM me if you solved it :) Have fun! * Solutions, 1 week from now.

    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet
    9. sij

    I'm very excited to share my blogpost series (including PoC code) about a remote, interactionless iPhone exploit over iMessage:

    Prikaži ovu nit
    Poništi
  7. 8. sij

    This bug, fixed in latest Firefox, led to pretty interesting research, how you can exfiltrate data in Firefox with a single injection point (ie. no reloading iframes). I’m going to publish the trick soon.

    Poništi
  8. 8. sij

    New year, new profile pic ;)

    Poništi
  9. proslijedio/la je Tweet
    24. pro 2019.

    Writeup on how I made $40,000 breaking the new Chromium Edge using essentially two XSS flaws.

    Poništi
  10. proslijedio/la je Tweet
    20. pro 2019.

    "Hey la Kibana, Inspection des gadgets !" 😋 Pwning Kibana 6.2 using prototype pollution and CVE-2018-17246 by

    Poništi
  11. proslijedio/la je Tweet
    14. pro 2019.

    If you wish to speak to us today, we have a stand on . You can meet and . Come talk to us!

    Poništi
  12. proslijedio/la je Tweet
    10. pro 2019.

    In today’s Chrome release, two security issues reported by our team are fixed. Good job and ! Writeups coming soon! Details:

    Poništi
  13. 2. pro 2019.

    [PL] 14 grudnia na konferencji opowiem o błędzie w AMP4Email i jak z niego urodziło się kilka kolejnych błędów (obejście DOMPurify czy CSP). Zapraszam!

    Poništi
  14. 29. stu 2019.

    During last months, me and my colleagues in worked on a book about web application security in Polish. It’s been an amazing experience and today first copies arrived from the printing house. We offer a promo code for Black Friday, so if you speak Polish, go get it!

    Poništi
  15. proslijedio/la je Tweet
    3. ruj 2019.

    Paste-Tastic! ft. - Google CTF 2019 Write-up Retweet if you liked it, Thanks :)

    Poništi
  16. 27. stu 2019.

    Remember the mXSS via </p> or </br> I reported? Turns out that Chrome is correct according to spec. Spec bug is submitted here:

    Poništi
  17. proslijedio/la je Tweet
    22. stu 2019.

    Shodan membership for $1! It's Shodan's 10 year anniversary, grab the offer while you can. Here:

    Prikaži ovu nit
    Poništi
  18. 22. stu 2019.

    Google is shutting down Translator Toolkit in the near future. That’s a pity, I have some good memories of it!

    Poništi
  19. proslijedio/la je Tweet
    21. stu 2019.
    Poništi
  20. 18. stu 2019.

    Here’s probably my favorite XSS of this year :) This is why we love legacy browser features like DOM Clobbering ;)

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·