Sparse Bruteforce Addon Detection 2011-07-01T13:20

Practical HTTP Host header attacks 2013-05-01T00:09

Abusing OWASP with 'Insufficient Attack Protection' 2017-04-24T14:31

Chronofeit Phishing 2010-12-18T23:31

JS-less XSS 2011-05-28T01:40

Comma Separated Vulnerabilities 2014-08-30T19:06

Exploiting Path Relative Style-Sheet Imports (PRSSI) 2015-02-18T12:25

Server-Side Template Injection 2015-08-19T17:33

Exploiting Uber and Piwik with adapted AngularJS payloads 2016-04-25T16:11

Simulating targets for XSS/CSRF attacks in hacking games 2011-05-11T15:44

X-Frame-Options gotcha 2012-06-02T17:56

Hackxor hacking game beta 2011-02-01T19:05

Reviewing bug bounties - a hacker's perspective 2016-08-11T14:28

h1-212 CTF Writeup 2017-11-22T13:14

Phrack ebook 2011-12-20T13:57

Skeleton Scribe