writeup

Me and Benjamin have spent many days hacking a self hosted tt-rss instance, and we have managed to achive remote code execution on the tt-rss clients subscribed to a malicious feed. You can read our blog post or even the full report. I still

Today I have received the following mail from Mailchimp: Our automated abuse-prevention system, Omnivore, has detected an action or content in your account that may be in violation of our Acceptable Use Policy. For more information on these violations, please review our Acceptable Use

Some people I know don't use RSS and prefer to get new information via mail, but due to my stance on privacy, I don't want to store personal information myself (i.e. email addresses at least) so I delegate this task to Mailchimp. They

In order to organize the content I post, I decided to separate it into two categories, digests and writeups. Regular digests with links to security related news will go into digests, everything else will go into writeups. On the home page both categories will

If you found this website useful, like my work, and want to show support, I have created some crypto wallets and you can buy me a coffee. There's also the option for PayPal in case you don't do crypto.

Since I'm maintaining a security blog, I have to implement the best security practices on this website. I also worked on some things that aren't exactly related to security, but in my opinion things are that we all work on implementing, only then we

As more and more people are being targeted by criminals in these tough times, I decided to offer my time to volunteer and help those affected that can't afford to pay for security consultants. If you or someone you know has been affected, reach