A really good cybersec reading materials.
Implementing a toy version of TLS 1.3
Logic Flaw Leading to RCE in Dynamicweb 9.5.0 - 9.12.7
RWCTF 4th Desperate Cat Writeup
CVE-2021-22555: Turning \x00\x00 into 10000$
SSTI Method Confusion in Go.
A story of leaking uninitialized memory from Fastly
Deep-dive into Windows Active Directory for Penetesters!
Timing attack mitigation must exclude network
Put an io_uring on it: Exploiting the Linux Kernel
Finding an unseen SQL Injection by bypassing escape functions in mysqljs/mysql
Prototype pollution attack in NodeJS
elFinder: The story of a repwning
Insecure cipher used in forum software
CVE-2022-27666: Exploit esp6 modules in Linux kernel