user: albinowax_

664 karma | created 9 years ago

I research novel web attack techniques. More details at https://jameskettle.com/

recent submissions

(no title)

7 months ago|discuss

(no title)

7 months ago|discuss

(no title)

7 months ago|discuss

Drag and Pwnd: Exploiting VS Code with ASCII (portswigger.net)

1 pts|10 months ago|discuss

(no title)

1 year ago|discuss

(no title)

1 year ago|discuss

(no title)

1 year ago|discuss

(no title)

1 year ago|discuss

(no title)

1 year ago|discuss

Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information (embracethered.com)

4 pts|1 year ago|discuss

Chaining Three Bugs to Access All Your ServiceNow Data (assetnote.io)

2 pts|1 year ago|discuss

ORM Leak Vulnerabilities (elttam.com)

1 pts|1 year ago|discuss

Hacking millions of modems and investigating who hacked my modem (samcurry.net)

838 pts|1 year ago|271 comments

Getting XXE in Web Browsers Using ChatGPT (swarm.ptsecurity.com)

1 pts|1 year ago|discuss

Response Filter Denial of Service: shut down a website by triggering WAF rule (blog.sicuranext.com)

95 pts|1 year ago|26 comments

Source Code Disclosure in Asp.net via Cookieless Sessions (swarm.ptsecurity.com)

1 pts|2 years ago|discuss

(no title)

2 years ago|discuss

(no title)

2 years ago|discuss

ChatGPT Account Takeover via Wildcard Web Cache Deception (nokline.github.io)

4 pts|2 years ago|discuss

Detection and Exploitation of Ivanti's Pulse Connect Secure RCE (assetnote.io)

1 pts|2 years ago|discuss