Home
Blog
Podcast
Vulns
About Us
Contact
Twitch
Youtube
Twitter
Discord
Github
Listen
RSS Feed

77 - Cross-browser tracking, frag attacks, & malicious rust macros

podcast mixed-podcast
A shorter episode, but some really cool vulns none-the-less, from mitigation bypassing on D-Link routers, to a new set of WiFi protocol design flaws.
 
18 May 2021

76 - Fake Vulns, More Valve, and an AWS Cognito issue

podcast mixed-podcast
Kicking off the week with some awesome vulns, an "almost" padding oracle in Azure Functions, a race-condition in AWS Cognito, some sound engine bugs, and a Foxit Reader Use-after-free.
 
11 May 2021

75 - Defcon Quals, Dead μops, BadAllocs, Wordpress XXE

podcast mixed-podcast
Big episode this week, with a lot of discussion about CTFs, kernel drama, and Github's exploit policy. Then some really interesting exploit strategies on Tesla and Netgear, along with some simple, yet deadly issues in Wordpress and Composer.
 
04 May 2021

74 - Bad Patches, Fuzzing Sockets, & 3DS Hacked by Super Mario

podcast mixed-podcast
Some drama in the Linux Kernel and so many vulns resulting in code execution in Homebrew, GitLab, an air fryer, Source engine, Super Mario Maker, Adobe Reader and the Linux Kernel.
 
27 April 2021

73 - Windows Bugs, Duo 2FA Bypass, and some Reverse Engineering

podcast mixed-podcast
Authentication bypasses, a Duo 2FA bypass, RCEs, a VM escape, and some reverse engineering writeups.
 
20 April 2021

72 - Pwn2own, Linux Kernel Exploits, and Malicious Mail

podcast mixed-podcast
MD5 is trending in 2021...a few kernel vulnerabilities, and some drama around pwn2own.
 
13 April 2021

71 - Speculation in Predictive Store Forwarding, Broken Fixes, and Owning Rocket.Chat

podcast mixed-podcast
One episode and several failed attempts to fix vulnerabilities, an interesting Rocket.Chat XSS and an exploitable TXT file abusing some weird features.
 
06 April 2021

70 - Google exposes an APT campaign, PHP owned, and Several Auth Issues

podcast mixed-podcast
Long episode this week as we talk about Google's decision to thwart a western intelligence operation (by fixing vulns), multiple authorization and authentication issues, and of course some memory corruption.
 
30 March 2021

69 - Fast Fuzzing, Malicious Pull Requests, and Rust in my kernel?!

podcast mixed-podcast
Time to rewrite Linux in Rust? Probably not, but it has landed in linux-next which we talked about. We also look at a couple interesting GitHub vulns, and talk about fuzzing.
 
23 March 2021

68 - Hacking Cameras, Stealing Logins, and Breaking Git

podcast mixed-podcast
RCE while cloning a Git repo, injecting video into network cameras, and stealing logins with HTML injection when XSS isn't possible.
 
16 March 2021
< Previous Page
Next Page >
7
8
9
10
11
12
13
14
15
16
17