Need a Software Developer?
Portfolio
Latest Blog Posts
Remember the vBulletin board I hacked a few years ago? It’s been down for about 2 years, and just came back online a few weeks ago. Naturally, I went to see if there are still vulnerabilities, especially in the custom add-ons. At first everythi...
[UPDATED] Let’s face it, cryptography is hard, and most people suck at it. They tend to guess and assume what the best practices are, but mostly fail at it. With version 5.5.0, PHP wants to put an end to this madness, and delivers a whole new A...
[UPDATED] If you’ve ever been to Spain, there’s a good chance you’ve heard of (or even used) Renfe, the state-owned company, operating passenger trains in the whole country. About 10 weeks ago, I reported two XSS vulnerabilities to...