Moin! In Hamburg gibt's in knapp 2 Wochen interessantes zu Browser Security -- online. Lukas Knittel (kunte_) stellt u.a. seine Forschungen zu XS-Leaks vor . Auf der ACM CCS gab's dafür einen "Best Paper Award" ! meetup.com/de-DE/OWASP-Ha… Vortrag ist wie immer frei.

#GoogleCTF is over! This year I prepared a race-condition based challenge which was a combination of #xsleaks #xss and other interesting client-side bugs. The challenge was solved by 10 teams and had unintended solutions, some of which are awesome! 😊 gist.github.com/terjanq/7c1a71…

I just published XSLeaker a tool that helps you to find potential #XSLeak vulnerabilities. github.com/Philesiv/XSLea…

Less than 24h until Hacklu CTF 2022 and the registration is now open! Sign up at flu.xxx and prepare yourself for the finest hacking. #Hack_lu #CTF

The Hacklu 2022 CTF is over! Thank you for playing! Of course special congrats to the top 3 teams! 🥳 🏆 🥇 organizers 🥈 justCatTheFish 🥉 💦 CTF: flu.xxx Challenges will still be up for a while. See you next Year! #hacklu #ctf FluxFingers

Helped justCatTheFish with yet another ctf and solved two highest scored challenges: HTPL from BitK and foodAPI from kunte_. The former was a JS sandbox escape and the latter was about 0day in #denodb. Some useful tricks 🙃 gist.github.com/terjanq/1926a1… #hacklu FluxFingers

Just for completeness here is my solve script: files.veryhax.ninja/solve-foodapi-… For anyone that wants another challenge try exploit this, with mysql instead of sqlite. 😈

✨Our paper "Isolated and Exhausted: Attacking Operating Systems via Site Isolation in the Browser" will appear at USENIX Security '23 and is now available as a preprint: usenix.org/conference/use… This work is by Matthias Gierlings, me (-), and Jörg Schwenk 🧵👇

Our paper "Finding All Cross-Site Needles in the DOM Stack - A Comprehensive Methodology for the Automatic XS-Leak Detection in Web Browsers" got accepted at ACM CCS 2023! ACM CCS 2024 The camera-ready version will be available at sigsac.org/ccs/CCS2023. Tool will be on GitHub.

Super excited to publish this blog post! One of the most fun bugs I exploited so far, had to get creative and lose my mind reading the CSS spec for 2 days 🙃

The game is on! You have 48h to prove your luck 👉 flu.xxx

Hacklu CTF is running at full steam with still ~23h left! 🚩 We got some great challenges waiting for you, including a 28-year-old 0-day in SSH, a Mastodon n-day, a QEMU escape, and many many more. Come try your luck 🎱👉 flu.xxx

Can server-side scanning research be legal and ethical? For our upcoming IEEE S&P paper "Where are the red lines?" we talked to experts on law and ethics, and web operators. We discussed challenges, solutions and various fictional research scenarios. swag.cispa.saarland/papers/hantke2…

Super excited to present this research at DEF CON! If you think SQL Injections have become a boring and repetitive topic, think again. There's a whole new layer to explore 👀

I found XSS in Roundcube and released a new announcement blog post about it today. Already excited to share the full details in a few weeks after people patched :)

Webs Webs Webs Webs Webs

Hacklu CTF is still running for ~23h! We still have some unsolved challenges, including: - 📱Android Flutter exploitation - 🦊 2 webs with Firefox bots - 🐒 pwning a 17 year old SpiderMonkey - ✍️ LaTeX madness Come play: flu.xxx