☁️ Ever wondered how the Google Cloud VRP rewards security researchers? 💰🤔 Our latest podcast episode gives you the inside scoop! 🎙️ cloud.withgoogle.com/cloudsecurity/…

The slides for my OffensiveCon talk "Finding and Exploiting 20-year-old bugs in Web Browsers" docs.google.com/presentation/d…

Apple awarded me only $1,000 for this bug, I should quit this bug bounty thing and get a real job.

Browser vulnerability research is probably one of the toughest areas for AI to automate. It's a great skill to learn. Here's an awesome intro to browser security research by Ivan Fratric 💙💛: docs.google.com/presentation/d… The talk is full of great practical examples, and good advice.

New Android host validation bypass technique! [1/4] All parsed URIs in Android are android.net.Uri.StringUri objects. However, the scheme parser only looks for the ":" delimiter

Google has paid $250000 for Sandbox escape report and POC is public issues.chromium.org/issues/4125787…

If you like Chrome IPC shenanigans like this, you might also enjoy my talk from black hat 25: youtu.be/qhhJCLy0YBA?si…

We've just released a tool to decrypt all Synology encrypted archives! We used it to compare SynologyPhotos versions and highlight our #Pwn2Own Ireland 2024 vulnerability on the BeeStation BST150-4T. Check out Tek_'s blog post for more details. synacktiv.com/en/publication…

As promised Blogpost is here! I find that a lot of the times people ask “how can researchers find complex bugs” This is my small contribution to show how the journey looked for me. I presented this content at hitcon last week! bughunters.google.com/blog/580034147…

Just published my first blog post "Cache Deception + CSPT: Turning Non Impactful Findings into Account Takeover" You can read the full write-up here: zere.es/posts/cache-de…

At long last - Phrack 72 has been released online for your reading pleasure! Check it out: phrack.org

Google VRP (Google Bug Hunters) disclosed my most impactful client-side report to date: bughunters.google.com/reports/vrp/wG… TL;DR An attacker could've gained access to Gemini Code Assist Tools (GitLab, GitHub etc.) configured by the victim

everyday I feel like more dumber and dumber.

Google VRP (Google Bug Hunters) No writeup yet but the report got disclosed: bughunters.google.com/reports/vrp/HR…

Bug write-up for "Controlling the Google Assistant via Web Speech API" ndevtk.github.io/writeups/2025/… *^____^*

fun writeup of a CSS to RCE vuln in Google Web Designer by Bálint Magyar balintmagyar.com/articles/googl…

I kinda love those developers who rely on WAF rules too much. • /res-api/<ID>/status → 200 OK • /res-api/<ID>/qwertyasdf → 404 • /res-api/<ID>/ → 403 Forbidden • /res-api/<ID>/?anyparam → 200 OK

[402791076][reward: $4000] Security: DevTools XSS allows sandbox escape, UXSS, CDP access, other impacts crbug.com/402791076

$117,750 bug, pretty cool. vulnano.com/2025/09/remote…

You Should NOT be Afraid of Hacking Google