Blog Posts
This blog post details a technique for breaking Apache Commons Lang's RandomStringUtils and Java's random.nextInt(bound) when the bound is odd. A tool is released which demonstrates the practicality of the attack.
This blog post is aimed to help people performing security code reviews on Golang code bases to identify dangerous code patterns.
This post is for vulnerability researchers looking at the ESP32 and would like a quick setup guide.
This blog post aims to highlight how EZ mode pairing implemented by Mirabella Genio and other Tuya Cloud IoT devices broadcast your WiFi credentials to the neighbourhood.