https://labs.reversec.comhttps://labs.reversec.com/advisorieshttps://labs.reversec.com/advisories/2006/11/crystal-reports-weak-sessionshttps://labs.reversec.com/advisories/2007/01/cisco-ios-invalid-dlsw-handshake-denial-of-servicehttps://labs.reversec.com/advisories/2007/02/communigate-xsshttps://labs.reversec.com/advisories/2007/04/cache-sample-page-xsshttps://labs.reversec.com/advisories/2007/04/elastic-path-administrative-session-hijacking-through-embedded-xsshttps://labs.reversec.com/advisories/2007/09/merak-webmail-xsshttps://labs.reversec.com/advisories/2007/10/ibm-lotus-domino-if-modified-since-stack-overflowhttps://labs.reversec.com/advisories/2007/12/plogger-sql-injectionhttps://labs.reversec.com/advisories/2008/01/meridio-cross-site-scripting-vulnerabilityhttps://labs.reversec.com/advisories/2008/02/itn-news-sidebar-gadgethttps://labs.reversec.com/advisories/2008/03/elastic-path-arbitrary-file-systems-accesshttps://labs.reversec.com/advisories/2008/03/ibm-websphere-mq-mcauser-bypasshttps://labs.reversec.com/advisories/2008/03/ibm-websphere-mq-security-exit-bypasshttps://labs.reversec.com/advisories/2008/04/ibm-informix-pre-authentication-stack-overflowhttps://labs.reversec.com/advisories/2008/04/interwoven-worksite-active-x-control-remote-code-executionhttps://labs.reversec.com/advisories/2008/04/national-rail-live-enquiries-departure-board-gadget-vulnerabilityhttps://labs.reversec.com/advisories/2008/04/watchguard-firebox-user-enumeration-vulnerabilityhttps://labs.reversec.com/advisories/2008/05/ibm-lotus-domino-accept-language-stack-overflow-advisoryhttps://labs.reversec.com/advisories/2008/07/dd-wrt-ssid-script-injection-vulnerabilityhttps://labs.reversec.com/advisories/2008/07/pfsense-dhcp-script-injection-vulnerabilityhttps://labs.reversec.com/advisories/2008/07/pluggedout-cms-user-authentication-bypass-vulnerabilityhttps://labs.reversec.com/advisories/2008/10/hp-quality-center-authentication-bypasshttps://labs.reversec.com/advisories/2009/01/sophos-rms-tao-component-denial-of-servicehttps://labs.reversec.com/advisories/2009/01/websphere-mq-tcpreceive-heap-overflowhttps://labs.reversec.com/advisories/2009/01/websphere-mq-xcsgetmem-heap-overflowhttps://labs.reversec.com/advisories/2009/04/retain-resource-server-remote-code-executionhttps://labs.reversec.com/advisories/2009/04/webex-remote-support-application-vulnerabilityhttps://labs.reversec.com/advisories/2009/06/ibm-websphere-mq-remote-buffer-overflowhttps://labs.reversec.com/advisories/2009/09/altiris-deployment-solution-vulnerabilitieshttps://labs.reversec.com/advisories/2009/10/ibm-websphere-mq-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2009/10/ibm-websphere-mq-rriacceptoamuserauth-heap-overflow-vulnerabilityhttps://labs.reversec.com/advisories/2009/10/linux-usb-device-driver-buffer-overflowhttps://labs.reversec.com/advisories/2009/12/intersystems-cache-csp-cache-server-pages-stack-overflowhttps://labs.reversec.com/advisories/2010/01/symantecs-altiris-deployment-solution-aclntusr-local-privilege-escalationhttps://labs.reversec.com/advisories/2010/01/symantecs-altiris-deployment-solution-clientserver-authentication-bypasshttps://labs.reversec.com/advisories/2010/01/symantecs-altiris-deployment-solution-dbmanager-authentication-bypasshttps://labs.reversec.com/advisories/2010/01/symantecs-altiris-deployment-solution-file-transfer-race-conditionhttps://labs.reversec.com/advisories/2010/03/ibm-websphere-mq-rridecompress-remote-denial-of-service-vulnerabilityhttps://labs.reversec.com/advisories/2010/03/ibm-websphere-mq-rrilookupget-remote-denial-of-service-vulnerabilityhttps://labs.reversec.com/advisories/2010/03/ibm-websphere-mq-ziivsendreceiveagent-memory-corruption-vulnerabilityhttps://labs.reversec.com/advisories/2010/04/vmware-webaccess-http-forwarding-vulnerabilityhttps://labs.reversec.com/advisories/2010/05/bt-home-hub-ssid-script-injection-vulnerabilityhttps://labs.reversec.com/advisories/2010/06/dotnetnuke-cross-site-request-forgery-vulnerabilityhttps://labs.reversec.com/advisories/2010/06/mozilla-firefox-64-bit-settextinternal-heap-buffer-overflowhttps://labs.reversec.com/advisories/2010/08/xine-lib-1119-free-uninitialised-variablehttps://labs.reversec.com/advisories/2010/09/ibm-lotus-domino-icalendar-email-address-stack-buffer-overflow-vulnerabilityhttps://labs.reversec.com/advisories/2010/09/openvpn-local-privilege-escalation-vulnerabilityhttps://labs.reversec.com/advisories/2010/11/apple-quicktime-jp2-codestream-type-confusionhttps://labs.reversec.com/advisories/2010/12/opensc-get-serial-number-stack-based-buffer-overflowhttps://labs.reversec.com/advisories/2010/12/pcsc-lite-libccid-buffer-overflowhttps://labs.reversec.com/advisories/2010/12/pcsc-lite-pcscd-atr-handler-buffer-overflowhttps://labs.reversec.com/advisories/2011/03/linux-kernel-caiaq-usb-drivers-buffer-overflow-vulnerabilityhttps://labs.reversec.com/advisories/2011/07/oracle-enterprise-manager-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2011/07/oracle-enterprise-manager-sql-injectionhttps://labs.reversec.com/advisories/2011/08/dropbox-for-android-authorisation-bypasshttps://labs.reversec.com/advisories/2011/08/mplayer-sami-subtitle-parser-buffer-overflowhttps://labs.reversec.com/advisories/2011/11/htc-windows-phone-7-arbitrary-readwrite-of-kernel-memoryhttps://labs.reversec.com/advisories/2011/11/samsung-omnia-7-rapiconfigexe-directory-traversalhttps://labs.reversec.com/advisories/2012/02/exponent-cms-sql-injectionhttps://labs.reversec.com/advisories/2012/05/ms12-034-silverlight-hebrew-unicode-engine-glyph-rendering-heap-double-freehttps://labs.reversec.com/advisories/2012/09/multiple-samsung-android-application-vulnerabilitieshttps://labs.reversec.com/advisories/2013/02/webtogo-3g-dongle-software-named-pipe-arbitrary-command-executionhttps://labs.reversec.com/advisories/2013/09/torque-pbs_mom-authentication-bypasshttps://labs.reversec.com/advisories/2013/09/webview-addjavascriptinterface-remote-code-executionhttps://labs.reversec.com/advisories/2013/11/umbraco-cms-templateservice-remote-code-executionhttps://labs.reversec.com/advisories/2014/01/cray-aprunapinit-privilege-escalationhttps://labs.reversec.com/advisories/2014/03/paypal-remote-code-executionhttps://labs.reversec.com/advisories/2014/05/dotclear-php-object-injectionhttps://labs.reversec.com/advisories/2014/05/metasploit-pro-root-privilege-escalationhttps://labs.reversec.com/advisories/2014/05/torque-buffer-overflowhttps://labs.reversec.com/advisories/2014/07/android-442-secure-usb-debugging-bypasshttps://labs.reversec.com/advisories/2014/10/blackberry-10-blackberry-world-mitmhttps://labs.reversec.com/advisories/2014/10/moab-authentication-bypasshttps://labs.reversec.com/advisories/2014/10/moab-authentication-bypass-insecure-message-signinghttps://labs.reversec.com/advisories/2014/10/moab-user-impersonationhttps://labs.reversec.com/advisories/2014/11/huawei-p2-hx170dec-privilege-escalation-vulnerabilityhttps://labs.reversec.com/advisories/2014/11/kingsoft-office-remote-code-executionhttps://labs.reversec.com/advisories/2014/11/nexus-5-442-local-doshttps://labs.reversec.com/advisories/2014/11/sony-playnow-store-arbitrary-package-installationhttps://labs.reversec.com/advisories/2014/12/apache-qpid-xml-document-type-definitions-processinghttps://labs.reversec.com/advisories/2014/12/jboss-hornetq-xml-external-entity-data-resolutionhttps://labs.reversec.com/advisories/2014/12/sgi-suid-root-privilege-escalationhttps://labs.reversec.com/advisories/2014/12/sgi-tempo-system-database-exposurehttps://labs.reversec.com/advisories/2014/12/sgi-tempo-system-database-password-exposurehttps://labs.reversec.com/advisories/2015/02/apache-qpid-authentication-bypasshttps://labs.reversec.com/advisories/2015/02/apache-qpid-denial-of-servicehttps://labs.reversec.com/advisories/2015/03/apache-activemq-and-activemq-apollo-xml-external-entity-data-parsinghttps://labs.reversec.com/advisories/2015/03/apache-activemq-ldap-wildcard-interpretationhttps://labs.reversec.com/advisories/2015/04/apache-cassandra-jmxrmi-remote-code-executionhttps://labs.reversec.com/advisories/2015/04/cisco-cloud-web-security-connector-jmxrmi-remote-code-executionhttps://labs.reversec.com/advisories/2015/06/amazon-fire-phone-certificate-install-user-id-check-failurehttps://labs.reversec.com/advisories/2015/06/amazon-fire-phone-no-secure-usb-debugginghttps://labs.reversec.com/advisories/2015/06/amazon-fire-phone-silent-certificate-installhttps://labs.reversec.com/advisories/2015/06/microsoft-office-uninitialized-memory-use-vulnerabilityhttps://labs.reversec.com/advisories/2015/07/javascript-privilege-escalation-in-adobe-readerhttps://labs.reversec.com/advisories/2015/07/samsung-s5-arbitary-file-retrieval-during-sbeam-transferhttps://labs.reversec.com/advisories/2015/08/microsoft-office-ctasksymbol-use-after-free-vulnerabilityhttps://labs.reversec.com/advisories/2015/08/sandbox-bypass-through-google-admin-webviewhttps://labs.reversec.com/advisories/2015/11/yale-home-system-europe-man-in-the-middle-command-execution-vulnerabilityhttps://labs.reversec.com/advisories/2016/02/hpe-vrf-hopping-vulnerabilityhttps://labs.reversec.com/advisories/2016/02/huawei-vrf-hopping-vulnerabilityhttps://labs.reversec.com/advisories/2016/04/bluetooth-pairing-authentication-bypasshttps://labs.reversec.com/advisories/2016/04/sage-erp-1000-unc-ntlm-relayhttps://labs.reversec.com/advisories/2016/06/ddn-default-ssh-keyshttps://labs.reversec.com/advisories/2016/06/ddn-insecure-update-processhttps://labs.reversec.com/advisories/2016/06/ibm-gpfs-spectrum-scale-command-injectionhttps://labs.reversec.com/advisories/2016/07/studiometry-database-information-disclosure-to-unauthenticated-usershttps://labs.reversec.com/advisories/2016/07/studiometry-insecure-password-storagehttps://labs.reversec.com/advisories/2016/07/studiometry-unauthenticated-administrative-user-creationhttps://labs.reversec.com/advisories/2016/07/symantec-endpoint-protection-manager-directory-traversalhttps://labs.reversec.com/advisories/2016/08/engenius-esr9850-authenticated-remote-code-executionhttps://labs.reversec.com/advisories/2016/09/android-premium-sms-warning-message-manipulationhttps://labs.reversec.com/advisories/2016/09/csrf-vulnerability-allows-for-remote-compromise-of-monero-walletshttps://labs.reversec.com/advisories/2016/09/magnicomps-sysinfo-root-setuid-local-privilege-escalation-vulnerabilityhttps://labs.reversec.com/advisories/2016/09/multiple-vulnerabilities-in-magnicomps-sysinfo-root-setuidhttps://labs.reversec.com/advisories/2016/12/fortios-local-admin-hash-disclosurehttps://labs.reversec.com/advisories/2016/12/trend-micro-threat-intelligence-manager-arbitrary-code-executionhttps://labs.reversec.com/advisories/2016/12/trend-micro-threat-intelligence-manager-arbitrary-local-file-disclosurehttps://labs.reversec.com/advisories/2016/12/trend-micro-threat-intelligence-manager-partial-authentication-bypasshttps://labs.reversec.com/advisories/2017/01/airdroid-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2017/01/carbon-black-cb-response-multiple-xsshttps://labs.reversec.com/advisories/2017/01/fingertec-unauthenticated-remote-enrollment-and-disclosure-vulnerabilityhttps://labs.reversec.com/advisories/2017/01/lg-cloud-backup-application-path-traversal-vulnerabilityhttps://labs.reversec.com/advisories/2017/01/lg-g3-arbitrary-file-retrieval-from-cloud-serviceshttps://labs.reversec.com/advisories/2017/03/arcserve-unified-data-protection-remote-code-executionhttps://labs.reversec.com/advisories/2017/05/mediatek-frame-buffer-debugging-interface-memory-disclosurehttps://labs.reversec.com/advisories/2017/05/mediatek-frame-buffer-debugging-interface-memory-overwritehttps://labs.reversec.com/advisories/2017/05/mediatek-gpu-extension-device-integer-overflowhttps://labs.reversec.com/advisories/2017/05/mediatek-m4u-driver-arbitrary-memory-overwritehttps://labs.reversec.com/advisories/2017/07/huawei-frame-buffer-driver-arbitrary-memory-writehttps://labs.reversec.com/advisories/2017/07/huawei-frame-buffer-driver-information-leakhttps://labs.reversec.com/advisories/2017/07/opencart-predictable-password-reset-tokenshttps://labs.reversec.com/advisories/2017/08/amazon-echo-rootinghttps://labs.reversec.com/advisories/2017/08/information-disclosure-via-aee-extension-to-debuggerdhttps://labs.reversec.com/advisories/2017/08/setuid-bit-set-in-omniresolvehttps://labs.reversec.com/advisories/2017/11/apple-ios-host-pairing-bypasshttps://labs.reversec.com/advisories/2017/11/microsoft-office-protected-view-out-of-bound-array-accesshttps://labs.reversec.com/advisories/2017/11/screen-capture-via-ui-overlays-in-mediaprojectionhttps://labs.reversec.com/advisories/2018/01/apfs-methodcontainerextendedinfo-invalid-writehttps://labs.reversec.com/advisories/2018/01/com_apple_avebridgequerycompletion-invalid-readhttps://labs.reversec.com/advisories/2018/01/com_apple_avebridgesubmitdata-null-pointer-dereferencehttps://labs.reversec.com/advisories/2018/01/privilege-escalation-via-adbd-misconfigurationhttps://labs.reversec.com/advisories/2018/03/ibm-spectrum-lsf-privilege-escalationhttps://labs.reversec.com/advisories/2018/04/mediatek-log-filtering-driver-information-disclosurehttps://labs.reversec.com/advisories/2018/04/milestone-xprotect-net-deserialization-vulnerabilityhttps://labs.reversec.com/advisories/2018/10/minikube-rce-vm-escapehttps://labs.reversec.com/advisories/2018/10/tinc-vpn-authentication-bypass-and-meta-message-tamperinghttps://labs.reversec.com/advisories/2018/11/macos-user-interface-denial-of-servicehttps://labs.reversec.com/advisories/2019/02/autocad-net-deserialisation-vulnerabilityhttps://labs.reversec.com/advisories/2019/03/nvidia-geforce-experience-lpehttps://labs.reversec.com/advisories/2019/03/windows-dhcp-client-rcehttps://labs.reversec.com/advisories/2019/08/intel-driver-support-assistant-dsa-lpehttps://labs.reversec.com/advisories/2019/09/linkplay-firmware-wanlan-remote-code-executionhttps://labs.reversec.com/advisories/2019/11/cisco-ucm-authenticated-informix-sql-injectionhttps://labs.reversec.com/advisories/2019/11/xiaomi-mi6-browser-remote-code-execution-pwn2own-2018https://labs.reversec.com/advisories/2019/11/xiaomi-mi6-wifi-captive-portal-remote-code-execution-pwn2own-2018https://labs.reversec.com/advisories/2019/12/keywe-smart-lock-unauthorized-access-and-traffic-interceptionhttps://labs.reversec.com/advisories/2019/12/multiple-vulnerabilities-in-barco-clicksharehttps://labs.reversec.com/advisories/2019/12/paxton-net2-rcehttps://labs.reversec.com/advisories/2020/01/identity-one-morphomanager-rcehttps://labs.reversec.com/advisories/2020/03/das-u-boot-verified-boot-bypasshttps://labs.reversec.com/advisories/2020/03/ramp-altimeter-stored-xsshttps://labs.reversec.com/advisories/2020/04/dell-emc-isilononefs-rcehttps://labs.reversec.com/advisories/2020/04/microchip-at91bootstrap-code-authentication-issueshttps://labs.reversec.com/advisories/2020/04/saltstack-authorization-bypasshttps://labs.reversec.com/advisories/2020/04/xiaomi-mi9-pwn2own-2019https://labs.reversec.com/advisories/2020/05/ceph-authorization-bypasshttps://labs.reversec.com/advisories/2020/05/xiaomi-redmi-5-plus-second-space-password-bypasshttps://labs.reversec.com/advisories/2020/06/microchip-atsama5-soc-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2020/07/citrix-virtual-apps-and-desktops-7-local-privilege-escalationhttps://labs.reversec.com/advisories/2020/07/tp-link-ac1750-pwn2own-2019https://labs.reversec.com/advisories/2020/09/nakivo-backup-replication-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2020/09/redesk-v23-multiple-issueshttps://labs.reversec.com/advisories/2020/10/citrix-adc-gateway-and-sd-wan-wanop-doshttps://labs.reversec.com/advisories/2020/11/cisco-imc-server-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2020/11/ibm-datapower-gateway-multiple-denial-of-service-vulnerabilitieshttps://labs.reversec.com/advisories/2021/01/wind-vision-android-application-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2021/03/microchip-atsama5-soc-multiple-vulnerabilities-full-releasehttps://labs.reversec.com/advisories/2021/03/samsung-galaxy-open-activities-via-samsung-browserhttps://labs.reversec.com/advisories/2021/03/samsung-s20-access-external-storage-fileshttps://labs.reversec.com/advisories/2021/04/samsung-galaxy-gain-access-to-samsung-accounthttps://labs.reversec.com/advisories/2021/05/datto-remote-monitoring-and-management-local-privilege-escalationhttps://labs.reversec.com/advisories/2021/05/mimosa-ptp-devices-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2021/07/op-tee-trustzone-bypass-on-multiple-nxp-imx-modelshttps://labs.reversec.com/advisories/2021/08/secudos-qiata-fta-mail-settings-access-control-vulnerabilityhttps://labs.reversec.com/advisories/2021/10/palo-alto-networks-globalprotect-buffer-overflowhttps://labs.reversec.com/advisories/2021/11/hp-multi-function-printers-exposed-uart-interfaceshttps://labs.reversec.com/advisories/2021/11/hp-multi-function-printers-improper-validation-of-an-array-indexhttps://labs.reversec.com/advisories/2021/11/op-tee-trustzone-bypass-at-wakeup-on-nxp-imx6ulhttps://labs.reversec.com/advisories/2022/02/cache-poisoning-xss-vulnerability-in-plone-cmshttps://labs.reversec.com/advisories/2022/05/clearpass-policy-manager-accepted-expired-saml-ticketshttps://labs.reversec.com/advisories/2022/05/ibm-websphere-liberty-ldap-injectionhttps://labs.reversec.com/advisories/2022/05/samsung-flow-any-app-can-read-the-external-storagehttps://labs.reversec.com/advisories/2022/05/samsung-galaxy-any-app-can-install-any-app-in-the-galaxy-app-storehttps://labs.reversec.com/advisories/2022/05/samsung-galaxy-one-tap-install-malicious-applicationhttps://labs.reversec.com/advisories/2022/06/ibm-navigator-for-i-multiple-sql-injectionshttps://labs.reversec.com/advisories/2022/10/microsoft-office-365-message-encryption-insecure-mode-of-operationhttps://labs.reversec.com/advisories/2023/03/insecure-authorization-scheme-for-api-requests-in-dbd-mobile-companion-application-for-megafeis-smart-lockshttps://labs.reversec.com/advisories/2023/03/insecure-password-policy-lack-of-rate-limiting-on-megafeis-smart-lock-api-serverhttps://labs.reversec.com/advisories/2023/03/insecure-password-reset-code-expiry-mechanism-for-megafeis-smart-lockshttps://labs.reversec.com/advisories/2023/03/username-disclosure-vulnerability-in-dbd-application-used-by-megafeis-smart-lockshttps://labs.reversec.com/advisories/2023/04/opentext-archive-center-administration-client-xxe-vulnerabilityhttps://labs.reversec.com/advisories/2023/08/synology-router-manager-reflected-xsshttps://labs.reversec.com/advisories/2023/09/fujitsu-mpollux-for-macos-multiple-vulnerabilitieshttps://labs.reversec.com/advisories/2023/09/mendio-cross-tenant-access-via-vulnerable-saml-implementationhttps://labs.reversec.com/advisories/2023/09/sql-injection-in-zte-4g-routers-and-modemshttps://labs.reversec.com/advisories/2023/10/ios-single-app-mode-escapehttps://labs.reversec.com/advisories/2023/10/optimizely-cms-admin-panel-dom-xsshttps://labs.reversec.com/advisories/2024/11/prompt-injection-in-jetbrains-rider-ai-assistanthttps://labs.reversec.com/advisories/2025/07/gatekeeper-constraint-bypasshttps://labs.reversec.com/advisories/2025/09/incorrect-permission-assignment-issue-in-gitlab-id-tokenhttps://labs.reversec.com/advisories/2025/10/remote-pre-authentication-xml-external-entity-xxe-injection-in-mendelson-as2-and-mendelson-as4https://labs.reversec.com/advisories/2025/12/synaptics-biometric-reader-driver-co-installer-elevation-of-privilegeshttps://labs.reversec.com/advisories/2026/01/azure-arc-enabled-server-installer-elevation-of-privilegeshttps://labs.reversec.com/advisories/2026/01/azure-connected-machine-agent-elevation-of-privilege-vulnerability-console-popuphttps://labs.reversec.com/advisories/2026/01/azure-connected-machine-agent-elevation-of-privilege-vulnerability-extension-servicehttps://labs.reversec.com/advisories/2026/01/azure-connected-machine-agent-elevation-of-privilege-vulnerability-scheduled-taskhttps://labs.reversec.com/advisories/2026/03/admin-passwords-cached-by-browsers-in-truesec-lapswebuihttps://labs.reversec.com/advisories/2026/03/insecure-logout-functionality-in-truesec-lapswebuihttps://labs.reversec.com/advisories/2026/03/long-session-lifetime-in-truesec-lapswebuihttps://labs.reversec.com/advisories/2026/04/cerberus-ftp-server-elevation-of-privilegeshttps://labs.reversec.com/advisories/2026/04/delinea-protocol-handler-rce-via-custom-launcher-incomplete-patchhttps://labs.reversec.com/advisories/page/2https://labs.reversec.com/advisories/page/3https://labs.reversec.com/advisories/page/4https://labs.reversec.com/advisories/page/5https://labs.reversec.com/advisories/page/6https://labs.reversec.com/advisories/page/7https://labs.reversec.com/advisories/page/8https://labs.reversec.com/advisories/page/9https://labs.reversec.com/advisories/page/10https://labs.reversec.com/advisories/page/11https://labs.reversec.com/advisories/page/12https://labs.reversec.com/advisories/page/13https://labs.reversec.com/advisories/page/14https://labs.reversec.com/advisories/page/15https://labs.reversec.com/advisories/page/16https://labs.reversec.com/advisories/page/17https://labs.reversec.com/advisories/page/18https://labs.reversec.com/advisories/page/19https://labs.reversec.com/authorshttps://labs.reversec.com/authors/abdullah-ansarihttps://labs.reversec.com/authors/adam-hiscockshttps://labs.reversec.com/authors/aled-mehtahttps://labs.reversec.com/authors/aleksi-kalliohttps://labs.reversec.com/authors/alex-brownhttps://labs.reversec.com/authors/alex-gassemhttps://labs.reversec.com/authors/alex-kaskasolihttps://labs.reversec.com/authors/alex-pettiferhttps://labs.reversec.com/authors/alex-plasketthttps://labs.reversec.com/authors/alexander-bolshevhttps://labs.reversec.com/authors/alfie-championhttps://labs.reversec.com/authors/altion-malkahttps://labs.reversec.com/authors/amar-menezeshttps://labs.reversec.com/authors/anders-lundmanhttps://labs.reversec.com/authors/andrea-barisanihttps://labs.reversec.com/authors/andrej-rosanohttps://labs.reversec.com/authors/apostolos-mastorishttps://labs.reversec.com/authors/ben-berkowitzhttps://labs.reversec.com/authors/ben-campbellhttps://labs.reversec.com/authors/benjamin-hullhttps://labs.reversec.com/authors/calum-elrickhttps://labs.reversec.com/authors/calum-hallhttps://labs.reversec.com/authors/christian-demkohttps://labs.reversec.com/authors/christian-philipovhttps://labs.reversec.com/authors/christoffer-jerkebyhttps://labs.reversec.com/authors/craig-koornhttps://labs.reversec.com/authors/daniel-bradberryhttps://labs.reversec.com/authors/dave-hartleyhttps://labs.reversec.com/authors/david-alveshttps://labs.reversec.com/authors/david-chismonhttps://labs.reversec.com/authors/david-middlehursthttps://labs.reversec.com/authors/devid-lanahttps://labs.reversec.com/authors/dmitry-janushkevichhttps://labs.reversec.com/authors/donato-capitellahttps://labs.reversec.com/authors/emanuele-cesarihttps://labs.reversec.com/authors/emilian-cebuchttps://labs.reversec.com/authors/erik-almhttps://labs.reversec.com/authors/fabian-beterkehttps://labs.reversec.com/authors/finlay-richardsonhttps://labs.reversec.com/authors/georgi-geshevhttps://labs.reversec.com/authors/golan-myershttps://labs.reversec.com/authors/grzegorz-rychlikhttps://labs.reversec.com/authors/harry-sintonenhttps://labs.reversec.com/authors/henri-nurmihttps://labs.reversec.com/authors/henry-hoggardhttps://labs.reversec.com/authors/jahmel-harrishttps://labs.reversec.com/authors/jake-labellehttps://labs.reversec.com/authors/james-cootehttps://labs.reversec.com/authors/james-hendersonhttps://labs.reversec.com/authors/james-loureirohttps://labs.reversec.com/authors/janusz-szmigielskihttps://labs.reversec.com/authors/jason-johnsonhttps://labs.reversec.com/authors/joakim-sandstromhttps://labs.reversec.com/authors/john-fitzpatrickhttps://labs.reversec.com/authors/jon-butlerhttps://labs.reversec.com/authors/jon-cavehttps://labs.reversec.com/authors/jordan-larosehttps://labs.reversec.com/authors/jordan-watsonhttps://labs.reversec.com/authors/joseph-redfernhttps://labs.reversec.com/authors/kamil-brenskihttps://labs.reversec.com/authors/katie-innshttps://labs.reversec.com/authors/katie-knowleshttps://labs.reversec.com/authors/ken-gannonhttps://labs.reversec.com/authors/knud-h%C3%B8jgaardhttps://labs.reversec.com/authors/kostas-lintovoishttps://labs.reversec.com/authors/krzysztof-marciniakhttps://labs.reversec.com/authors/krzysztof-pranczkhttps://labs.reversec.com/authors/laban-sk%C3%B6llermarkhttps://labs.reversec.com/authors/leandro-benadehttps://labs.reversec.com/authors/leonidas-tsaousishttps://labs.reversec.com/authors/lily-bradshawhttps://labs.reversec.com/authors/luke-drakefordhttps://labs.reversec.com/authors/luke-jenningshttps://labs.reversec.com/authors/luke-robertshttps://labs.reversec.com/authors/marco-lancinihttps://labs.reversec.com/authors/martyn-rukshttps://labs.reversec.com/authors/mateusz-frubahttps://labs.reversec.com/authors/matthew-grovehttps://labs.reversec.com/authors/matthew-keoghhttps://labs.reversec.com/authors/matthew-lucashttps://labs.reversec.com/authors/matthew-pendleburyhttps://labs.reversec.com/authors/matthew-uzzellhttps://labs.reversec.com/authors/max-keasleyhttps://labs.reversec.com/authors/max-toperhttps://labs.reversec.com/authors/mi%C5%82osz-gaczkowskihttps://labs.reversec.com/authors/mika-kulmalahttps://labs.reversec.com/authors/mohit-guptahttps://labs.reversec.com/authors/nathan-smithhttps://labs.reversec.com/authors/nick-joneshttps://labs.reversec.com/authors/niklas-sarokaarihttps://labs.reversec.com/authors/nilshttps://labs.reversec.com/authors/oliver-simonnethttps://labs.reversec.com/authors/olle-segerdahlhttps://labs.reversec.com/authors/owen-reevehttps://labs.reversec.com/authors/page/2https://labs.reversec.com/authors/page/3https://labs.reversec.com/authors/page/4https://labs.reversec.com/authors/page/5https://labs.reversec.com/authors/page/6https://labs.reversec.com/authors/page/7https://labs.reversec.com/authors/page/8https://labs.reversec.com/authors/page/9https://labs.reversec.com/authors/page/10https://labs.reversec.com/authors/page/11https://labs.reversec.com/authors/pawel-kurowskihttps://labs.reversec.com/authors/phil-sofiahttps://labs.reversec.com/authors/piotr-osuchhttps://labs.reversec.com/authors/rafael-dominguez-vegahttps://labs.reversec.com/authors/riccardo-ancaranihttps://labs.reversec.com/authors/richard-sulshttps://labs.reversec.com/authors/rob-russellhttps://labs.reversec.com/authors/robert-bearsbyhttps://labs.reversec.com/authors/robert-millerhttps://labs.reversec.com/authors/ross-donaldhttps://labs.reversec.com/authors/sebastian-edmeadhttps://labs.reversec.com/authors/sharan-patilhttps://labs.reversec.com/authors/stuart-morganhttps://labs.reversec.com/authors/tere-teamhttps://labs.reversec.com/authors/thomas-byrnehttps://labs.reversec.com/authors/thomas-crosshttps://labs.reversec.com/authors/tim-carringtonhttps://labs.reversec.com/authors/timo-hirvonenhttps://labs.reversec.com/authors/tinus-greenhttps://labs.reversec.com/authors/tom-taylor-macleanhttps://labs.reversec.com/authors/tom-van-de-wielehttps://labs.reversec.com/authors/tomas-rzepkahttps://labs.reversec.com/authors/tomi-tuominenhttps://labs.reversec.com/authors/tyrone-erasmushttps://labs.reversec.com/authors/vincent-tanhttps://labs.reversec.com/authors/william-ben-embarekhttps://labs.reversec.com/authors/william-burgesshttps://labs.reversec.com/authors/william-knowleshttps://labs.reversec.com/authors/william-s%C3%B6derberghttps://labs.reversec.com/authors/william-taylorhttps://labs.reversec.com/authors/yong-chuan-kohhttps://labs.reversec.com/categorieshttps://labs.reversec.com/categories/ai-securityhttps://labs.reversec.com/categories/application-securityhttps://labs.reversec.com/categories/attack-detectionhttps://labs.reversec.com/categories/attack-path-mappinghttps://labs.reversec.com/categories/cloud-securityhttps://labs.reversec.com/categories/container-securityhttps://labs.reversec.com/categories/database-securityhttps://labs.reversec.com/categories/hardware-securityhttps://labs.reversec.com/categories/infrastructure-securityhttps://labs.reversec.com/categories/mobile-securityhttps://labs.reversec.com/categories/network-securityhttps://labs.reversec.com/categories/otherhttps://labs.reversec.com/categories/privilege-escalationhttps://labs.reversec.com/categories/red-teamhttps://labs.reversec.com/categories/vulndevhttps://labs.reversec.com/page/2https://labs.reversec.com/page/3https://labs.reversec.com/page/4https://labs.reversec.com/page/5https://labs.reversec.com/page/6https://labs.reversec.com/page/7https://labs.reversec.com/page/8https://labs.reversec.com/page/9https://labs.reversec.com/page/10https://labs.reversec.com/page/11https://labs.reversec.com/page/12https://labs.reversec.com/page/13https://labs.reversec.com/page/14https://labs.reversec.com/page/15https://labs.reversec.com/page/16https://labs.reversec.com/page/17https://labs.reversec.com/page/18https://labs.reversec.com/page/19https://labs.reversec.com/page/20https://labs.reversec.com/page/21https://labs.reversec.com/page/22https://labs.reversec.com/page/23https://labs.reversec.com/page/24https://labs.reversec.com/page/25https://labs.reversec.com/page/26https://labs.reversec.com/page/27https://labs.reversec.com/page/28https://labs.reversec.com/page/29https://labs.reversec.com/page/30https://labs.reversec.com/posts/2006https://labs.reversec.com/posts/2006/08https://labs.reversec.com/posts/2006/08/defcon-14-ibm-networkinghttps://labs.reversec.com/posts/2007https://labs.reversec.com/posts/2007/08https://labs.reversec.com/posts/2007/08/defcon-15-websphere-mqhttps://labs.reversec.com/posts/2007/09https://labs.reversec.com/posts/2007/09/considerations-for-the-secure-rollout-of-sidebar-gadgets-on-windows-vistahttps://labs.reversec.com/posts/2007/10https://labs.reversec.com/posts/2007/10/fist-2007-inspect-a-gadgethttps://labs.reversec.com/posts/2008https://labs.reversec.com/posts/2008/04https://labs.reversec.com/posts/2008/04/security-implications-of-windows-access-tokenshttps://labs.reversec.com/posts/2008/05https://labs.reversec.com/posts/2008/05/ibm-websphere-mq-security-part-1https://labs.reversec.com/posts/2008/07https://labs.reversec.com/posts/2008/07/behind-enemy-lines-administrative-application-attacks-white-paper-releasedhttps://labs.reversec.com/posts/2008/08https://labs.reversec.com/posts/2008/08/defcon-16-talk-review-advanced-software-armouring-and-polymorphic-kung-fuhttps://labs.reversec.com/posts/2008/08/defcon-16-talk-review-the-pentest-is-dead-long-live-the-pentesthttps://labs.reversec.com/posts/2008/08/defcon-16-talk-review-time-based-blind-sql-injection-using-heavy-queries-and-the-marathon-toolhttps://labs.reversec.com/posts/2008/08/defcon16-virtually-hackinghttps://labs.reversec.com/posts/2008/09https://labs.reversec.com/posts/2008/09/stockholm-sec-t-conference-rounduphttps://labs.reversec.com/posts/2008/11https://labs.reversec.com/posts/2008/11/deepsec-2008-behind-enemy-lines-administrative-web-application-attackshttps://labs.reversec.com/posts/2008/11/presentation-deepsec-2008-behind-enemy-lines-administrative-web-application-attackshttps://labs.reversec.com/posts/2009https://labs.reversec.com/posts/2009/03https://labs.reversec.com/posts/2009/03/have-you-got-bad-timinghttps://labs.reversec.com/posts/2009/05https://labs.reversec.com/posts/2009/05/hashcookies-a-simple-recipehttps://labs.reversec.com/posts/2009/06https://labs.reversec.com/posts/2009/06/eusecwest-2009-run-downhttps://labs.reversec.com/posts/2009/08https://labs.reversec.com/posts/2009/08/defcon-17https://labs.reversec.com/posts/2009/08/fun-with-plug-0wnhttps://labs.reversec.com/posts/2009/09https://labs.reversec.com/posts/2009/09/attacking-altiris-at-deepsec-09https://labs.reversec.com/posts/2009/09/usb-research-to-be-presented-at-t209https://labs.reversec.com/posts/2009/10https://labs.reversec.com/posts/2009/10/usb-attacks-fun-with-plug-and-0wn-t209https://labs.reversec.com/posts/2009/11https://labs.reversec.com/posts/2009/11/singing-the-mainframe-security-blueshttps://labs.reversec.com/posts/2009/12https://labs.reversec.com/posts/2009/12/deepsec-2009https://labs.reversec.com/posts/2009/12/deepsec-2009-weapons-of-mass-pwnage-attacking-deployment-solutionshttps://labs.reversec.com/posts/2009/12/weapons-of-mass-pwnage-attacking-deployment-solutions-deepsec-2009https://labs.reversec.com/posts/2010https://labs.reversec.com/posts/2010/01https://labs.reversec.com/posts/2010/01/adobe-reader-exploit-on-vista-and-7https://labs.reversec.com/posts/2010/01/solaris-debugging-and-bug-hunting-at-shmoocon-2010https://labs.reversec.com/posts/2010/03https://labs.reversec.com/posts/2010/03/cansecwest-2010https://labs.reversec.com/posts/2010/03/presentation-shmoocon-2010-how-to-be-an-rsol-effective-bug-hunting-in-solarishttps://labs.reversec.com/posts/2010/03/video-how-to-be-an-rsol-effective-bug-hunting-in-solaris-shmoocon-2010https://labs.reversec.com/posts/2010/06https://labs.reversec.com/posts/2010/06/brave-new-64-bit-worldhttps://labs.reversec.com/posts/2010/06/journey-to-the-centre-of-the-breachhttps://labs.reversec.com/posts/2010/07https://labs.reversec.com/posts/2010/07/just-arrived-max-pwnagehttps://labs.reversec.com/posts/2010/07/palm-webos-145-fixes-security-issue-found-by-mwr-infosecurityhttps://labs.reversec.com/posts/2010/08https://labs.reversec.com/posts/2010/08/banking-sector-security-annual-research-reviewhttps://labs.reversec.com/posts/2010/08/recent-palm-webos-vulnerabilities-mwr-infosecurity-clarificationhttps://labs.reversec.com/posts/2010/09https://labs.reversec.com/posts/2010/09/a-reason-to-visit-stockholm-in-septemberhttps://labs.reversec.com/posts/2010/09/assessing-the-tux-strength-part-2-into-the-kernelhttps://labs.reversec.com/posts/2010/09/career-opportunities-at-mwrhttps://labs.reversec.com/posts/2010/09/middleware-risks-guidance-for-it-security-managershttps://labs.reversec.com/posts/2010/10https://labs.reversec.com/posts/2010/10/building-android-sandcastles-in-androids-sandboxhttps://labs.reversec.com/posts/2010/11https://labs.reversec.com/posts/2010/11/a-postcard-from-finlandhttps://labs.reversec.com/posts/2010/12https://labs.reversec.com/posts/2010/12/forensic-readiness-a-primerhttps://labs.reversec.com/posts/2011https://labs.reversec.com/posts/2011/04https://labs.reversec.com/posts/2011/04/hackfu-2011-the-countdown-continueshttps://labs.reversec.com/posts/2011/05https://labs.reversec.com/posts/2011/05/the-google-android-update-dilemmahttps://labs.reversec.com/posts/2011/06https://labs.reversec.com/posts/2011/06/to-the-victor-goes-the-gold-to-the-loserhttps://labs.reversec.com/posts/2011/07https://labs.reversec.com/posts/2011/07/debuggable-apps-in-android-markethttps://labs.reversec.com/posts/2011/07/usb-fuzzing-for-the-masseshttps://labs.reversec.com/posts/2011/11https://labs.reversec.com/posts/2011/11/a-taste-of-finland-t2-2011https://labs.reversec.com/posts/2011/11/blue-hat-v11-executive-briefings-win-phone-7-oem-failhttps://labs.reversec.com/posts/2011/11/windows-pwn-7-oem-owned-every-mobilehttps://labs.reversec.com/posts/2011/12https://labs.reversec.com/posts/2011/12/how-to-find-android-0day-in-no-timehttps://labs.reversec.com/posts/2011/12/tell-us-your-incognito-ideas-and-win-one-of-5-lego-ninjashttps://labs.reversec.com/posts/2011/12/veripy-new-project-to-support-the-migration-to-ipv6https://labs.reversec.com/posts/2012https://labs.reversec.com/posts/2012/01https://labs.reversec.com/posts/2012/01/distributed-hash-cracking-on-the-webhttps://labs.reversec.com/posts/2012/03https://labs.reversec.com/posts/2012/03/summer-internship-positionshttps://labs.reversec.com/posts/2012/04https://labs.reversec.com/posts/2012/04/adventures-with-android-webviewshttps://labs.reversec.com/posts/2012/04/adventures-with-ios-uiwebviewshttps://labs.reversec.com/posts/2012/04/building-android-java-javascript-bridgeshttps://labs.reversec.com/posts/2012/04/hackfu-2012-teams-have-been-finalizedhttps://labs.reversec.com/posts/2012/04/hackfu-challenge-2012https://labs.reversec.com/posts/2012/04/mwr-sap-metasploit-moduleshttps://labs.reversec.com/posts/2012/04/sap-slappinghttps://labs.reversec.com/posts/2012/06https://labs.reversec.com/posts/2012/06/hackfu-2012-announcedhttps://labs.reversec.com/posts/2012/06/veripy-is-releasedhttps://labs.reversec.com/posts/2012/07https://labs.reversec.com/posts/2012/07/hacking-embedded-devices-uart-consoleshttps://labs.reversec.com/posts/2012/07/incognito-v20-releasedhttps://labs.reversec.com/posts/2012/08https://labs.reversec.com/posts/2012/08/mercury-reflectionhttps://labs.reversec.com/posts/2012/09https://labs.reversec.com/posts/2012/09/a-look-at-the-blackberry-os-as-a-secure-platform-for-third-party-applicationshttps://labs.reversec.com/posts/2012/09/mercury-v11-is-releasedhttps://labs.reversec.com/posts/2012/09/mobile-pwn2own-at-eusecwest-2012https://labs.reversec.com/posts/2012/09/pinpadpwnhttps://labs.reversec.com/posts/2012/09/sap-parameter-injectionhttps://labs.reversec.com/posts/2012/09/sap-smashing-internet-windowshttps://labs.reversec.com/posts/2012/09/security-testing-4g-lte-networkshttps://labs.reversec.com/posts/2012/12https://labs.reversec.com/posts/2012/12/sap-slapping-deepsechttps://labs.reversec.com/posts/2012/12/whats-new-in-mercury-v2https://labs.reversec.com/posts/2013https://labs.reversec.com/posts/2013/02https://labs.reversec.com/posts/2013/02/2013-summer-internship-positionshttps://labs.reversec.com/posts/2013/02/announcing-mercury-v21https://labs.reversec.com/posts/2013/03https://labs.reversec.com/posts/2013/03/announcing-mercury-v22https://labs.reversec.com/posts/2013/03/bsides-challengehttps://labs.reversec.com/posts/2013/03/pwn2own-at-cansecwest-2013https://labs.reversec.com/posts/2013/04https://labs.reversec.com/posts/2013/04/hackfu-venue-clue-1https://labs.reversec.com/posts/2013/04/hackfu-venue-clue-2https://labs.reversec.com/posts/2013/04/hackfu-venue-clue-3https://labs.reversec.com/posts/2013/04/hackfu-venue-clue-4https://labs.reversec.com/posts/2013/04/mwr-challenge-2013https://labs.reversec.com/posts/2013/04/mwr-hacklabhttps://labs.reversec.com/posts/2013/04/mwr-hacklab-chubby-datahttps://labs.reversec.com/posts/2013/04/mwr-hacklab-rootbeer-fridgehttps://labs.reversec.com/posts/2013/04/mwr-labs-pwn2own-2013-write-up-webkit-exploithttps://labs.reversec.com/posts/2013/05https://labs.reversec.com/posts/2013/05/hackfu-venue-clue-5https://labs.reversec.com/posts/2013/05/hackfu-venue-clue-6https://labs.reversec.com/posts/2013/05/hackfu-venue-clue-7https://labs.reversec.com/posts/2013/05/mwr-hacklab-getting-frequency-with-sdrhttps://labs.reversec.com/posts/2013/05/mwr-hacklab-mwrcadehttps://labs.reversec.com/posts/2013/06https://labs.reversec.com/posts/2013/06/is-blackberry-deadhttps://labs.reversec.com/posts/2013/06/mercury-v221https://labs.reversec.com/posts/2013/07https://labs.reversec.com/posts/2013/07/bsides-challenge-walkthroughhttps://labs.reversec.com/posts/2013/09https://labs.reversec.com/posts/2013/09/conference-review-nordic-sec-conf-nsc2013https://labs.reversec.com/posts/2013/09/hack-the-gibson-44conhttps://labs.reversec.com/posts/2013/09/introducing-drozerhttps://labs.reversec.com/posts/2013/09/mwr-labs-pwn2own-2013-write-up-kernel-exploithttps://labs.reversec.com/posts/2013/09/polishing-chrome-for-fun-and-profit-nschttps://labs.reversec.com/posts/2013/09/webview-addjavascriptinterface-remote-code-executionhttps://labs.reversec.com/posts/2013/10https://labs.reversec.com/posts/2013/10/hackfu-the-final-wrap-uphttps://labs.reversec.com/posts/2013/11https://labs.reversec.com/posts/2013/11/advanced-persistent-timelordshttps://labs.reversec.com/posts/2013/11/applovin-ad-library-sdk-remote-command-execution-via-update-mechanismhttps://labs.reversec.com/posts/2013/11/debug-all-the-android-thingshttps://labs.reversec.com/posts/2013/11/millenial-media-ad-libraryhttps://labs.reversec.com/posts/2013/11/run-sap-runhttps://labs.reversec.com/posts/2013/12https://labs.reversec.com/posts/2013/12/google-admob-ad-library-arbitrary-intent-activity-invocationhttps://labs.reversec.com/posts/2013/12/hack-the-gibson-deepsec-editionhttps://labs.reversec.com/posts/2013/12/hackfu-2013-the-moviehttps://labs.reversec.com/posts/2013/12/pontiflex-ad-library-remote-javascript-command-executionhttps://labs.reversec.com/posts/2014https://labs.reversec.com/posts/2014/04https://labs.reversec.com/posts/2014/04/hackfu-challenge-2014https://labs.reversec.com/posts/2014/04/laravel-cookie-forgery-decryption-and-rcehttps://labs.reversec.com/posts/2014/04/windows-phone-8-application-security-slides-syscan-2014https://labs.reversec.com/posts/2014/04/windows-phone-8-application-security-whitepaper-syscan-2014https://labs.reversec.com/posts/2014/04/wordpress-auth-cookie-forgeryhttps://labs.reversec.com/posts/2014/05https://labs.reversec.com/posts/2014/05/hackfu-venue-2014-clue-onehttps://labs.reversec.com/posts/2014/05/hackfu-venue-2014-clue-threehttps://labs.reversec.com/posts/2014/05/hackfu-venue-2014-clue-twohttps://labs.reversec.com/posts/2014/05/hacklab-2014https://labs.reversec.com/posts/2014/05/hacklab-2014-builders-are-better-breakershttps://labs.reversec.com/posts/2014/05/hacklab-2014-hard-disk-drives-squishy-disk-driveshttps://labs.reversec.com/posts/2014/05/hacklab-2014-the-jaegerbomberhttps://labs.reversec.com/posts/2014/05/poor-mans-static-analysis-bsides-london-2014https://labs.reversec.com/posts/2014/06https://labs.reversec.com/posts/2014/06/beaglebone-black-gnu-radio-and-hackrf-onehttps://labs.reversec.com/posts/2014/06/continued-adventures-with-ios-uiwebviewshttps://labs.reversec.com/posts/2014/06/fracking-with-hybrid-mobile-applicationshttps://labs.reversec.com/posts/2014/06/hackfu-venue-2014-clue-fourhttps://labs.reversec.com/posts/2014/06/isolated-heap-friends-object-allocation-hardening-in-web-browsershttps://labs.reversec.com/posts/2014/06/native-bridges-over-troubled-waterhttps://labs.reversec.com/posts/2014/06/putting-javascript-bridges-into-android-contexthttps://labs.reversec.com/posts/2014/08https://labs.reversec.com/posts/2014/08/windows-8-kernel-memory-protections-bypasshttps://labs.reversec.com/posts/2014/10https://labs.reversec.com/posts/2014/10/windows-services-all-roads-lead-to-systemhttps://labs.reversec.com/posts/2014/11https://labs.reversec.com/posts/2014/11/my-nfc-remains-enabled-reflections-on-mobile-pwn2own-2014https://labs.reversec.com/posts/2014/12https://labs.reversec.com/posts/2014/12/digging-into-ms14-068-exploitation-and-defencehttps://labs.reversec.com/posts/2014/12/faster-fuzzing-with-pythonhttps://labs.reversec.com/posts/2015https://labs.reversec.com/posts/2015/01https://labs.reversec.com/posts/2015/01/cve-2014-8272-a-case-of-weak-session-id-in-dell-idrachttps://labs.reversec.com/posts/2015/02https://labs.reversec.com/posts/2015/02/popping-alert1-in-flashhttps://labs.reversec.com/posts/2015/02/practically-exploiting-ms15-014-and-ms15-011https://labs.reversec.com/posts/2015/03https://labs.reversec.com/posts/2015/03/disgusting-code-geoip-lookups-in-excelhttps://labs.reversec.com/posts/2015/03/gitlab-user-enumerationhttps://labs.reversec.com/posts/2015/03/hackfu-challenge-2015https://labs.reversec.com/posts/2015/03/watch-you-lookin-athttps://labs.reversec.com/posts/2015/04https://labs.reversec.com/posts/2015/04/how-to-own-any-windows-network-with-group-policy-hijacking-attackshttps://labs.reversec.com/posts/2015/05https://labs.reversec.com/posts/2015/05/android-wear-security-analysishttps://labs.reversec.com/posts/2015/06https://labs.reversec.com/posts/2015/06/set-fire-to-the-phonehttps://labs.reversec.com/posts/2015/06/why-bother-assessing-popular-softwarehttps://labs.reversec.com/posts/2015/07https://labs.reversec.com/posts/2015/07/understanding-the-protected-view-sandboxhttps://labs.reversec.com/posts/2015/08https://labs.reversec.com/posts/2015/08/44con-2015-challengehttps://labs.reversec.com/posts/2015/09https://labs.reversec.com/posts/2015/09/a-practical-guide-to-cracking-password-hasheshttps://labs.reversec.com/posts/2015/09/active-directory-users-in-nested-groups-reconnaissancehttps://labs.reversec.com/posts/2015/09/mass-http-enumeration-with-metasploithttps://labs.reversec.com/posts/2015/09/memory-allocation-how-injecting-into-your-own-tools-might-help-you-compromise-a-windows-domainhttps://labs.reversec.com/posts/2015/09/mission-mpossiblehttps://labs.reversec.com/posts/2015/10https://labs.reversec.com/posts/2015/10/journey-into-hunting-the-attackershttps://labs.reversec.com/posts/2015/11https://labs.reversec.com/posts/2015/11/emv-protocol-fuzzerhttps://labs.reversec.com/posts/2015/12https://labs.reversec.com/posts/2015/12/warranty-void-if-label-removed-attacking-mpls-networkshttps://labs.reversec.com/posts/2016https://labs.reversec.com/posts/2016/02https://labs.reversec.com/posts/2016/02/the-pageantry-of-lateral-movementhttps://labs.reversec.com/posts/2016/03https://labs.reversec.com/posts/2016/03/abusing-putty-pageant-through-native-functionalityhttps://labs.reversec.com/posts/2016/03/lora-security-building-a-secure-lora-solutionhttps://labs.reversec.com/posts/2016/03/qnx-99-problems-but-a-microkernel-aint-onehttps://labs.reversec.com/posts/2016/03/qnx-security-architecture-whitepaperhttps://labs.reversec.com/posts/2016/03/when-lanman-history-reveals-the-present-and-future-but-might-just-be-lying-to-youhttps://labs.reversec.com/posts/2016/04https://labs.reversec.com/posts/2016/04/egress-checkinghttps://labs.reversec.com/posts/2016/04/heap-tracing-with-windbg-and-pythonhttps://labs.reversec.com/posts/2016/04/masquerading-as-a-windows-system-binary-using-digital-signatureshttps://labs.reversec.com/posts/2016/04/offline-sql-querying-of-active-directoryhttps://labs.reversec.com/posts/2016/04/persistence-architecture-mattershttps://labs.reversec.com/posts/2016/04/safer-shellcode-implantshttps://labs.reversec.com/posts/2016/04/windows-kernel-exploitation-101-exploiting-cve-2014-4113https://labs.reversec.com/posts/2016/05https://labs.reversec.com/posts/2016/05/visualising-organisational-charts-from-active-directoryhttps://labs.reversec.com/posts/2016/06https://labs.reversec.com/posts/2016/06/alice-bob-and-eve-how-quantum-technology-can-secure-against-adversarieshttps://labs.reversec.com/posts/2016/06/d-wave-why-all-the-controversyhttps://labs.reversec.com/posts/2016/06/dont-try-this-at-home-decapping-ics-with-boiling-acidhttps://labs.reversec.com/posts/2016/06/quantum-paradoxes-popping-the-bubble-with-shors-algorithmhttps://labs.reversec.com/posts/2016/06/the-current-state-of-quantum-cryptography-qkd-and-the-future-of-information-securityhttps://labs.reversec.com/posts/2016/07https://labs.reversec.com/posts/2016/07/bug-hunting-with-static-code-analysishttps://labs.reversec.com/posts/2016/08https://labs.reversec.com/posts/2016/08/a-quick-intro-to-needlehttps://labs.reversec.com/posts/2016/08/platform-agnostic-kernel-fuzzinghttps://labs.reversec.com/posts/2016/08/the-hack-that-changed-the-blockchain-perspectivehttps://labs.reversec.com/posts/2016/09https://labs.reversec.com/posts/2016/09/h-field-electromagnetic-sniffinghttps://labs.reversec.com/posts/2016/09/malicious-outlook-ruleshttps://labs.reversec.com/posts/2016/09/popping-my-dos-cherry-at-derbyconhttps://labs.reversec.com/posts/2016/10https://labs.reversec.com/posts/2016/10/a-hybrid-approach-to-ics-intrusion-detectionhttps://labs.reversec.com/posts/2016/10/accessing-internal-fileshares-through-exchange-activesynchttps://labs.reversec.com/posts/2016/10/fuzzing-the-windows-kernelhttps://labs.reversec.com/posts/2016/10/securing-the-loading-of-dynamic-codehttps://labs.reversec.com/posts/2016/10/static-analysis-for-code-and-infrastructurehttps://labs.reversec.com/posts/2016/10/windows-kernel-fuzzinghttps://labs.reversec.com/posts/2016/11https://labs.reversec.com/posts/2016/11/a-penetration-testers-guide-to-the-azure-cloudhttps://labs.reversec.com/posts/2016/11/avrop-vm-a-rop-based-movfuscator-vm-on-a-harvard-devicehttps://labs.reversec.com/posts/2016/11/hello-ms08-067-my-old-friendhttps://labs.reversec.com/posts/2016/11/needle-finding-issues-within-ios-applicationshttps://labs.reversec.com/posts/2016/11/one-template-to-rule-em-allhttps://labs.reversec.com/posts/2016/11/working-9-till-5https://labs.reversec.com/posts/2017https://labs.reversec.com/posts/2017/01https://labs.reversec.com/posts/2017/01/a-tale-of-bitmaps-leaking-gdi-objects-post-windows-10-anniversary-editionhttps://labs.reversec.com/posts/2017/01/digital-lockpicking-why-your-front-door-shouldnt-be-on-the-internethttps://labs.reversec.com/posts/2017/01/high-interaction-honeypots-with-sysdig-and-falcohttps://labs.reversec.com/posts/2017/01/trust-years-to-earn-seconds-to-breakhttps://labs.reversec.com/posts/2017/03https://labs.reversec.com/posts/2017/03/a-window-into-ring0https://labs.reversec.com/posts/2017/04https://labs.reversec.com/posts/2017/04/add-in-opportunities-for-office-persistencehttps://labs.reversec.com/posts/2017/04/logic-bug-hunting-in-chrome-on-androidhttps://labs.reversec.com/posts/2017/05https://labs.reversec.com/posts/2017/05/dll-tricks-with-vba-to-improve-offensive-macro-capabilityhttps://labs.reversec.com/posts/2017/06https://labs.reversec.com/posts/2017/06/offensive-ics-exploitation-a-description-of-an-ics-ctfhttps://labs.reversec.com/posts/2017/07https://labs.reversec.com/posts/2017/07/using-windows-file-auditing-to-detect-honeyfile-accesshttps://labs.reversec.com/posts/2017/08https://labs.reversec.com/posts/2017/08/alexa-are-you-listeninghttps://labs.reversec.com/posts/2017/09https://labs.reversec.com/posts/2017/09/biting-the-apple-that-feeds-you-macos-kernel-fuzzinghttps://labs.reversec.com/posts/2017/09/kernel-driver-mmap-handler-exploitationhttps://labs.reversec.com/posts/2017/09/land-configure-microsoft-office-persisthttps://labs.reversec.com/posts/2017/09/tasking-office-365-for-cobalt-strike-c2https://labs.reversec.com/posts/2017/10https://labs.reversec.com/posts/2017/10/webusb-how-a-website-could-steal-data-off-your-phonehttps://labs.reversec.com/posts/2017/11https://labs.reversec.com/posts/2017/11/corrupting-memory-in-microsoft-office-protected-view-sandboxhttps://labs.reversec.com/posts/2017/12https://labs.reversec.com/posts/2017/12/finding-the-low-hanging-routehttps://labs.reversec.com/posts/2018https://labs.reversec.com/posts/2018/01https://labs.reversec.com/posts/2018/01/enumerating-remote-access-policies-through-gpohttps://labs.reversec.com/posts/2018/02https://labs.reversec.com/posts/2018/02/investigating-rf-controls-with-rtl-sdrhttps://labs.reversec.com/posts/2018/04https://labs.reversec.com/posts/2018/04/apple-safari-wasm-section-exploithttps://labs.reversec.com/posts/2018/04/huawei-mate-9-pro-mobile-pwn2own-2017https://labs.reversec.com/posts/2018/04/some-brief-notes-on-webkit-heap-hardeninghttps://labs.reversec.com/posts/2018/06https://labs.reversec.com/posts/2018/06/chainspotting-building-exploit-chains-with-logic-bugshttps://labs.reversec.com/posts/2018/06/eql-injection-not-a-typo-and-oracle-endecahttps://labs.reversec.com/posts/2018/07https://labs.reversec.com/posts/2018/07/a-guide-to-repacking-ios-applicationshttps://labs.reversec.com/posts/2018/07/bypassing-memory-scanners-with-cobalt-strike-and-gargoylehttps://labs.reversec.com/posts/2018/07/ec2-policies-security-freedom-and-bothhttps://labs.reversec.com/posts/2018/07/passing-the-hash-to-ntlm-authenticated-web-applicationshttps://labs.reversec.com/posts/2018/08https://labs.reversec.com/posts/2018/08/dns-rebinding-headless-browsershttps://labs.reversec.com/posts/2018/09https://labs.reversec.com/posts/2018/09/debugging-released-xamarin-android-applicationshttps://labs.reversec.com/posts/2018/10https://labs.reversec.com/posts/2018/10/apple-safari-pwn2own-2018-whitepaperhttps://labs.reversec.com/posts/2018/10/big-game-fuzzing-pwn2own-safari-t2https://labs.reversec.com/posts/2018/10/the-mate-escape-huawei-pwn2owninghttps://labs.reversec.com/posts/2018/10/undisable-restricted-adminhttps://labs.reversec.com/posts/2018/11https://labs.reversec.com/posts/2018/11/hp-nonstop-basicshttps://labs.reversec.com/posts/2018/11/intro-to-binary-analysis-with-z3-and-angrhttps://labs.reversec.com/posts/2018/12https://labs.reversec.com/posts/2018/12/twinkly-twinkly-little-starhttps://labs.reversec.com/posts/2019https://labs.reversec.com/posts/2019/01https://labs.reversec.com/posts/2019/01/attacking-kubernetes-through-kubelethttps://labs.reversec.com/posts/2019/01/captcha-22-breaking-text-based-captchas-with-machine-learninghttps://labs.reversec.com/posts/2019/01/what-the-fuzzhttps://labs.reversec.com/posts/2019/02https://labs.reversec.com/posts/2019/02/3d-accelerated-exploitationhttps://labs.reversec.com/posts/2019/02/autocad-designing-a-kill-chainhttps://labs.reversec.com/posts/2019/02/ventures-into-hyper-v-fuzzing-hypercallshttps://labs.reversec.com/posts/2019/08https://labs.reversec.com/posts/2019/08/getting-real-with-xsshttps://labs.reversec.com/posts/2019/08/how-secure-is-your-android-keystore-authenticationhttps://labs.reversec.com/posts/2019/11https://labs.reversec.com/posts/2019/11/automating-pwn2own-with-jandroidhttps://labs.reversec.com/posts/2019/11/ou-having-a-laughhttps://labs.reversec.com/posts/2019/11/prince-of-the-honeycombhttps://labs.reversec.com/posts/2019/11/uncommon-sql-database-alert-informix-sql-injectionhttps://labs.reversec.com/posts/2019/12https://labs.reversec.com/posts/2019/12/aws-such-auspices-are-very-hard-to-readhttps://labs.reversec.com/posts/2019/12/digital-lockpicking-stealing-keys-to-the-kingdomhttps://labs.reversec.com/posts/2019/12/hackin-around-the-christmas-treehttps://labs.reversec.com/posts/2019/12/opening-up-the-samsung-q60-series-smart-tvhttps://labs.reversec.com/posts/2020https://labs.reversec.com/posts/2020/01https://labs.reversec.com/posts/2020/01/misadventures-in-awshttps://labs.reversec.com/posts/2020/02https://labs.reversec.com/posts/2020/02/forging-swift-mt-payment-messages-for-fun-and-pr-researchhttps://labs.reversec.com/posts/2020/02/rethinking-credential-thefthttps://labs.reversec.com/posts/2020/02/tamagohttps://labs.reversec.com/posts/2020/03https://labs.reversec.com/posts/2020/03/how-are-we-doing-with-androids-overlay-attacks-in-2020https://labs.reversec.com/posts/2020/03/making-donuts-explode-updates-to-the-c3-frameworkhttps://labs.reversec.com/posts/2020/04https://labs.reversec.com/posts/2020/04/jamfing-for-joy-attacking-macos-in-enterprisehttps://labs.reversec.com/posts/2020/05https://labs.reversec.com/posts/2020/05/bypassing-windows-defender-runtime-scanninghttps://labs.reversec.com/posts/2020/05/internet-exploiter-understanding-vulnerabilities-in-internet-explorerhttps://labs.reversec.com/posts/2020/05/releasing-the-captcha-crackenhttps://labs.reversec.com/posts/2020/05/u-booting-securelyhttps://labs.reversec.com/posts/2020/06https://labs.reversec.com/posts/2020/06/abusing-access-to-mount-namespaces-through-procpidroothttps://labs.reversec.com/posts/2020/06/attack-detection-fundamentals-initial-access-lab-1https://labs.reversec.com/posts/2020/06/attack-detection-fundamentals-initial-access-lab-2https://labs.reversec.com/posts/2020/06/attack-detection-fundamentals-initial-access-lab-3https://labs.reversec.com/posts/2020/06/attack-detection-fundamentals-initial-access-lab-4https://labs.reversec.com/posts/2020/07https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-c2-and-exfiltration-lab-1https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-c2-and-exfiltration-lab-2https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-c2-and-exfiltration-lab-3https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-code-execution-and-persistence-lab-1https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-code-execution-and-persistence-lab-2https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-discovery-and-lateral-movement-lab-1https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-discovery-and-lateral-movement-lab-2https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-discovery-and-lateral-movement-lab-3https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-discovery-and-lateral-movement-lab-4https://labs.reversec.com/posts/2020/07/attack-detection-fundamentals-discovery-and-lateral-movement-lab-5https://labs.reversec.com/posts/2020/07/helping-root-out-of-the-containerhttps://labs.reversec.com/posts/2020/07/the-fake-ciscohttps://labs.reversec.com/posts/2020/08https://labs.reversec.com/posts/2020/08/exploiting-cve-2019-17026-a-firefox-jit-bughttps://labs.reversec.com/posts/2020/09https://labs.reversec.com/posts/2020/09/application-level-purple-teaming-a-case-studyhttps://labs.reversec.com/posts/2020/09/n1ql-injection-kind-of-sql-injection-in-a-nosql-databasehttps://labs.reversec.com/posts/2020/09/securing-aem-with-dispatcherhttps://labs.reversec.com/posts/2020/10https://labs.reversec.com/posts/2020/10/gwtmap-reverse-engineering-google-web-toolkit-applicationshttps://labs.reversec.com/posts/2020/10/introducing-ldap-c2-for-c3https://labs.reversec.com/posts/2020/10/operationalising-calendar-alerts-persistence-on-macoshttps://labs.reversec.com/posts/2020/10/samsung-s20-rce-via-samsung-galaxy-store-apphttps://labs.reversec.com/posts/2020/11https://labs.reversec.com/posts/2020/11/detecting-cobalt-strike-default-modules-via-named-pipe-analysishttps://labs.reversec.com/posts/2020/11/using-and-detecting-c2-printer-pivotinghttps://labs.reversec.com/posts/2020/12https://labs.reversec.com/posts/2020/12/sniff-there-leaks-my-bitlocker-keyhttps://labs.reversec.com/posts/2021https://labs.reversec.com/posts/2021/03https://labs.reversec.com/posts/2021/03/click-here-for-free-tv-chaining-bugs-to-takeover-wind-vision-accountshttps://labs.reversec.com/posts/2021/04https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-aws-lab-1https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-aws-lab-2https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-aws-lab-3https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-azure-lab-1https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-azure-lab-2https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-azure-lab-3https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-macos-lab-1https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-macos-lab-2https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-macos-lab-3https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-windows-lab-1https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-windows-lab-2https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-windows-lab-3https://labs.reversec.com/posts/2021/04/attack-detection-fundamentals-2021-windows-lab-4https://labs.reversec.com/posts/2021/04/detecting-exposed-cobalt-strike-dns-redirectorshttps://labs.reversec.com/posts/2021/04/heavy-metal-debugginghttps://labs.reversec.com/posts/2021/08https://labs.reversec.com/posts/2021/08/playing-with-puttyhttps://labs.reversec.com/posts/2021/11https://labs.reversec.com/posts/2021/11/a-bit-of-a-fixer-upper-testing-fix-backed-applicationshttps://labs.reversec.com/posts/2021/11/printing-shellzhttps://labs.reversec.com/posts/2021/12https://labs.reversec.com/posts/2021/12/faking-a-positive-covid-testhttps://labs.reversec.com/posts/2022https://labs.reversec.com/posts/2022/04https://labs.reversec.com/posts/2022/04/detecting-attacks-against-azure-devopshttps://labs.reversec.com/posts/2022/04/faking-another-positive-covid-testhttps://labs.reversec.com/posts/2022/04/performing-and-preventing-attacks-on-azure-cloud-environments-through-azure-devopshttps://labs.reversec.com/posts/2022/05https://labs.reversec.com/posts/2022/05/scheduled-task-tamperinghttps://labs.reversec.com/posts/2022/09https://labs.reversec.com/posts/2022/09/prototype-pollution-primer-for-pentesters-and-programmershttps://labs.reversec.com/posts/2022/11https://labs.reversec.com/posts/2022/11/looting-microsoft-configuration-managerhttps://labs.reversec.com/posts/2023https://labs.reversec.com/posts/2023/01https://labs.reversec.com/posts/2023/01/dangers-of-a-service-as-a-principal-in-aws-resource-based-policieshttps://labs.reversec.com/posts/2023/02https://labs.reversec.com/posts/2023/02/detecting-onenote-abusehttps://labs.reversec.com/posts/2023/03https://labs.reversec.com/posts/2023/03/megafeis-palm-exploiting-vulnerabilities-to-open-bluetooth-smartlockshttps://labs.reversec.com/posts/2023/06https://labs.reversec.com/posts/2023/06/executing-arbitrary-code-executables-in-read-only-filesystemshttps://labs.reversec.com/posts/2023/09https://labs.reversec.com/posts/2023/09/guiding-black-box-can-fuzzing-with-electromagnetic-side-channel-analysishttps://labs.reversec.com/posts/2023/10https://labs.reversec.com/posts/2023/10/enumerating-cognito-clients-exposed-to-the-internethttps://labs.reversec.com/posts/2023/11https://labs.reversec.com/posts/2023/11/synthetic-recollectionshttps://labs.reversec.com/posts/2024https://labs.reversec.com/posts/2024/02https://labs.reversec.com/posts/2024/02/binary-exploitation-for-special-occasions-privilege-escalation-in-zoshttps://labs.reversec.com/posts/2024/02/multiple-vulnerabilities-in-elinksmart-padlockshttps://labs.reversec.com/posts/2024/02/runc-working-directory-breakout-cve-2024-21626https://labs.reversec.com/posts/2024/02/should-you-let-chatgpt-control-your-browserhttps://labs.reversec.com/posts/2024/02/the-hidden-depths-of-mainframe-application-testing-more-than-green-screen-deephttps://labs.reversec.com/posts/2024/04https://labs.reversec.com/posts/2024/04/abusing-search-permissions-on-docker-directories-for-privilege-escalationhttps://labs.reversec.com/posts/2024/04/domain-specific-prompt-injection-detectionhttps://labs.reversec.com/posts/2024/04/exploiting-the-aws-client-vpn-on-macos-for-local-privilege-escalation-cve-2024-30165https://labs.reversec.com/posts/2024/05https://labs.reversec.com/posts/2024/05/generative-ai-an-attackers-viewhttps://labs.reversec.com/posts/2024/06https://labs.reversec.com/posts/2024/06/when-your-ai-assistant-has-an-evil-twinhttps://labs.reversec.com/posts/2024/10https://labs.reversec.com/posts/2024/10/fine-tuning-llms-to-resist-indirect-prompt-injection-attackshttps://labs.reversec.com/posts/2024/12https://labs.reversec.com/posts/2024/12/multi-chain-prompt-injection-attackshttps://labs.reversec.com/posts/2025https://labs.reversec.com/posts/2025/01https://labs.reversec.com/posts/2025/01/cloudwatch-dashboard-oversharinghttps://labs.reversec.com/posts/2025/01/spikee-testing-llm-applications-for-prompt-injectionhttps://labs.reversec.com/posts/2025/07https://labs.reversec.com/posts/2025/07/ativarspy-swimming-with-delphinshttps://labs.reversec.com/posts/2025/07/elevating-attack-path-mapping-to-the-cloudshttps://labs.reversec.com/posts/2025/07/high-profile-cloud-priveschttps://labs.reversec.com/posts/2025/07/mapping-oracles-forgotten-pathways-lateral-movement-with-oracrawlhttps://labs.reversec.com/posts/2025/08https://labs.reversec.com/posts/2025/08/another-ecs-privilege-escalation-pathhttps://labs.reversec.com/posts/2025/08/breaking-down-azure-devops-techniques-for-extracting-pipeline-credentialshttps://labs.reversec.com/posts/2025/08/design-patterns-to-secure-llm-agents-in-actionhttps://labs.reversec.com/posts/2025/09https://labs.reversec.com/posts/2025/09/staying-sneaky-in-the-office-365https://labs.reversec.com/posts/2025/10https://labs.reversec.com/posts/2025/10/entra-connect-exploitation-in-2025-an-overviewhttps://labs.reversec.com/posts/2025/10/evaluating-llm-input-comprehension-and-guardrail-robustness-through-noise-based-attackshttps://labs.reversec.com/posts/2025/12https://labs.reversec.com/posts/2025/12/local-privilege-escalation-via-vulnerable-usb-co-installershttps://labs.reversec.com/posts/2026https://labs.reversec.com/posts/2026/01https://labs.reversec.com/posts/2026/01/azure-arc-a-double-edged-swordhttps://labs.reversec.com/posts/2026/02https://labs.reversec.com/posts/2026/02/building-an-ai-vishing-solution-in-7-dayshttps://labs.reversec.com/posts/2026/02/spikee-testing-for-llm-prompt-injection-in-restrictive-environmentshttps://labs.reversec.com/posts/2026/03https://labs.reversec.com/posts/2026/03/testing-complex-application-flows-with-spikee-and-playwrighthttps://labs.reversec.com/posts/2026/03/three-confirmed-vulnerabilities-in-truesec-lapswebuihttps://labs.reversec.com/posts/2026/03/unexpected-routing-behaviour-in-aws-with-vpc-peering-and-nat-gatewayhttps://labs.reversec.com/posts/2026/04https://labs.reversec.com/posts/2026/04/its-just-a-matter-of-time-backdooring-conditional-access-policieshttps://labs.reversec.com/posts/2026/04/using-spikee-for-multi-turn-jailbreak-attackshttps://labs.reversec.com/posts/2026/05https://labs.reversec.com/posts/2026/05/where-there-is-mssql-there-is-a-wayhttps://labs.reversec.com/searchhttps://labs.reversec.com/tagshttps://labs.reversec.com/tags/4ghttps://labs.reversec.com/tags/44conhttps://labs.reversec.com/tags/active-directoryhttps://labs.reversec.com/tags/adaptive-attackshttps://labs.reversec.com/tags/adexplorerhttps://labs.reversec.com/tags/adohttps://labs.reversec.com/tags/adobehttps://labs.reversec.com/tags/aemhttps://labs.reversec.com/tags/agentshttps://labs.reversec.com/tags/aihttps://labs.reversec.com/tags/alexahttps://labs.reversec.com/tags/amazonhttps://labs.reversec.com/tags/androidhttps://labs.reversec.com/tags/anrdoidhttps://labs.reversec.com/tags/anti-virushttps://labs.reversec.com/tags/apmhttps://labs.reversec.com/tags/applehttps://labs.reversec.com/tags/as2https://labs.reversec.com/tags/as4https://labs.reversec.com/tags/ativarspyhttps://labs.reversec.com/tags/attackhttps://labs.reversec.com/tags/awshttps://labs.reversec.com/tags/aws-securityhttps://labs.reversec.com/tags/awspxhttps://labs.reversec.com/tags/azurehttps://labs.reversec.com/tags/azure-archttps://labs.reversec.com/tags/beaglebonehttps://labs.reversec.com/tags/best-of-nhttps://labs.reversec.com/tags/bitlockerhttps://labs.reversec.com/tags/blackberryhttps://labs.reversec.com/tags/blehttps://labs.reversec.com/tags/blockchainhttps://labs.reversec.com/tags/bluehathttps://labs.reversec.com/tags/bluetoothhttps://labs.reversec.com/tags/bsideshttps://labs.reversec.com/tags/burphttps://labs.reversec.com/tags/c2https://labs.reversec.com/tags/c3https://labs.reversec.com/tags/cansecwesthttps://labs.reversec.com/tags/captchahttps://labs.reversec.com/tags/chainhttps://labs.reversec.com/tags/chatgpthttps://labs.reversec.com/tags/chip-and-pinhttps://labs.reversec.com/tags/chromehttps://labs.reversec.com/tags/cicdhttps://labs.reversec.com/tags/ciscohttps://labs.reversec.com/tags/citrixhttps://labs.reversec.com/tags/cloudhttps://labs.reversec.com/tags/cloudtrailhttps://labs.reversec.com/tags/cloudwatchhttps://labs.reversec.com/tags/cobalt-strikehttps://labs.reversec.com/tags/code-injectionhttps://labs.reversec.com/tags/code-reviewhttps://labs.reversec.com/tags/comhttps://labs.reversec.com/tags/conditional-accesshttps://labs.reversec.com/tags/containershttps://labs.reversec.com/tags/couchbasehttps://labs.reversec.com/tags/credential-thefthttps://labs.reversec.com/tags/cryptographyhttps://labs.reversec.com/tags/csphttps://labs.reversec.com/tags/cvehttps://labs.reversec.com/tags/databasehttps://labs.reversec.com/tags/database-linkshttps://labs.reversec.com/tags/deepsechttps://labs.reversec.com/tags/def-conhttps://labs.reversec.com/tags/derbyconhttps://labs.reversec.com/tags/devopshttps://labs.reversec.com/tags/devsecconhttps://labs.reversec.com/tags/dnshttps://labs.reversec.com/tags/dockerhttps://labs.reversec.com/tags/dronehttps://labs.reversec.com/tags/drozerhttps://labs.reversec.com/tags/ecshttps://labs.reversec.com/tags/ekopartyhttps://labs.reversec.com/tags/elinksmarthttps://labs.reversec.com/tags/emvhttps://labs.reversec.com/tags/endecahttps://labs.reversec.com/tags/entrahttps://labs.reversec.com/tags/entra-connecthttps://labs.reversec.com/tags/entraidhttps://labs.reversec.com/tags/eqlhttps://labs.reversec.com/tags/ethereumhttps://labs.reversec.com/tags/etwhttps://labs.reversec.com/tags/eusecwesthttps://labs.reversec.com/tags/evasionhttps://labs.reversec.com/tags/excelhttps://labs.reversec.com/tags/exchangehttps://labs.reversec.com/tags/exfiltrationhttps://labs.reversec.com/tags/exploit-protectionshttps://labs.reversec.com/tags/falcohttps://labs.reversec.com/tags/firefoxhttps://labs.reversec.com/tags/firmwarehttps://labs.reversec.com/tags/fixhttps://labs.reversec.com/tags/flashhttps://labs.reversec.com/tags/forensicshttps://labs.reversec.com/tags/fridahttps://labs.reversec.com/tags/fuzzinghttps://labs.reversec.com/tags/gitlabhttps://labs.reversec.com/tags/googlehttps://labs.reversec.com/tags/google-geminihttps://labs.reversec.com/tags/graph-theoryhttps://labs.reversec.com/tags/group-policyhttps://labs.reversec.com/tags/gwthttps://labs.reversec.com/tags/hackfuhttps://labs.reversec.com/tags/hacklabhttps://labs.reversec.com/tags/hackrfhttps://labs.reversec.com/tags/hacktivityhttps://labs.reversec.com/tags/hitbhttps://labs.reversec.com/tags/honeypotshttps://labs.reversec.com/tags/hphttps://labs.reversec.com/tags/hpchttps://labs.reversec.com/tags/htahttps://labs.reversec.com/tags/httphttps://labs.reversec.com/tags/huaweihttps://labs.reversec.com/tags/hyper-vhttps://labs.reversec.com/tags/iamhttps://labs.reversec.com/tags/ibmhttps://labs.reversec.com/tags/ibm-zoshttps://labs.reversec.com/tags/icshttps://labs.reversec.com/tags/idrachttps://labs.reversec.com/tags/impackethttps://labs.reversec.com/tags/incident-responsehttps://labs.reversec.com/tags/incognitohttps://labs.reversec.com/tags/infrastructure-securityhttps://labs.reversec.com/tags/initial-accesshttps://labs.reversec.com/tags/internhttps://labs.reversec.com/tags/internet-explorerhttps://labs.reversec.com/tags/ioshttps://labs.reversec.com/tags/iothttps://labs.reversec.com/tags/ipmihttps://labs.reversec.com/tags/ipv6https://labs.reversec.com/tags/isolated-heaphttps://labs.reversec.com/tags/jamfhttps://labs.reversec.com/tags/javahttps://labs.reversec.com/tags/jdwphttps://labs.reversec.com/tags/kerberoshttps://labs.reversec.com/tags/kernelhttps://labs.reversec.com/tags/kuberneteshttps://labs.reversec.com/tags/lapswebuihttps://labs.reversec.com/tags/laravelhttps://labs.reversec.com/tags/lateral-movementhttps://labs.reversec.com/tags/ldaphttps://labs.reversec.com/tags/linkshttps://labs.reversec.com/tags/linuxhttps://labs.reversec.com/tags/llmhttps://labs.reversec.com/tags/lmhttps://labs.reversec.com/tags/lorahttps://labs.reversec.com/tags/lpehttps://labs.reversec.com/tags/lsasshttps://labs.reversec.com/tags/ltehttps://labs.reversec.com/tags/machine-learninghttps://labs.reversec.com/tags/macoshttps://labs.reversec.com/tags/mainframehttps://labs.reversec.com/tags/malwarehttps://labs.reversec.com/tags/mappinghttps://labs.reversec.com/tags/mecmhttps://labs.reversec.com/tags/memory-corruptionhttps://labs.reversec.com/tags/mendelsonhttps://labs.reversec.com/tags/metasploithttps://labs.reversec.com/tags/microsofthttps://labs.reversec.com/tags/microsoft-365https://labs.reversec.com/tags/microsoft-officehttps://labs.reversec.com/tags/mimikatzhttps://labs.reversec.com/tags/mobilehttps://labs.reversec.com/tags/mobsechttps://labs.reversec.com/tags/mplshttps://labs.reversec.com/tags/mposhttps://labs.reversec.com/tags/mqhttps://labs.reversec.com/tags/mssqlhttps://labs.reversec.com/tags/mwrhttps://labs.reversec.com/tags/nat-gatewayhttps://labs.reversec.com/tags/needlehttps://labs.reversec.com/tags/netsechttps://labs.reversec.com/tags/nfchttps://labs.reversec.com/tags/noisehttps://labs.reversec.com/tags/nordic-sec-confhttps://labs.reversec.com/tags/nordic-security-conferencehttps://labs.reversec.com/tags/nosqlhttps://labs.reversec.com/tags/ntlmhttps://labs.reversec.com/tags/office-365https://labs.reversec.com/tags/oidchttps://labs.reversec.com/tags/oraclehttps://labs.reversec.com/tags/othershttps://labs.reversec.com/tags/outlookhttps://labs.reversec.com/tags/owasphttps://labs.reversec.com/tags/pacsechttps://labs.reversec.com/tags/password-crackinghttps://labs.reversec.com/tags/passwordshttps://labs.reversec.com/tags/pathhttps://labs.reversec.com/tags/pdfhttps://labs.reversec.com/tags/pentestinghttps://labs.reversec.com/tags/persistencehttps://labs.reversec.com/tags/phonegaphttps://labs.reversec.com/tags/phphttps://labs.reversec.com/tags/playwrighthttps://labs.reversec.com/tags/plchttps://labs.reversec.com/tags/point-of-salehttps://labs.reversec.com/tags/powershellhttps://labs.reversec.com/tags/presentationhttps://labs.reversec.com/tags/privilege-escalationhttps://labs.reversec.com/tags/prompt-injectionhttps://labs.reversec.com/tags/pthhttps://labs.reversec.com/tags/puttyhttps://labs.reversec.com/tags/pwn2ownhttps://labs.reversec.com/tags/pythonhttps://labs.reversec.com/tags/qnxhttps://labs.reversec.com/tags/quantum-computinghttps://labs.reversec.com/tags/rcehttps://labs.reversec.com/tags/rdphttps://labs.reversec.com/tags/reconhttps://labs.reversec.com/tags/reconnaissancehttps://labs.reversec.com/tags/reflectionhttps://labs.reversec.com/tags/reverse-engineeringhttps://labs.reversec.com/tags/reversechttps://labs.reversec.com/tags/rfidhttps://labs.reversec.com/tags/rophttps://labs.reversec.com/tags/rsahttps://labs.reversec.com/tags/safarihttps://labs.reversec.com/tags/samsunghttps://labs.reversec.com/tags/sandbox-escapehttps://labs.reversec.com/tags/saphttps://labs.reversec.com/tags/sccmhttps://labs.reversec.com/tags/sdlchttps://labs.reversec.com/tags/sdnhttps://labs.reversec.com/tags/sdrhttps://labs.reversec.com/tags/sec-thttps://labs.reversec.com/tags/securi-tayhttps://labs.reversec.com/tags/securityhttps://labs.reversec.com/tags/sharepointhttps://labs.reversec.com/tags/shmooconhttps://labs.reversec.com/tags/sigmahttps://labs.reversec.com/tags/smart-lockshttps://labs.reversec.com/tags/social-engineeringhttps://labs.reversec.com/tags/solarishttps://labs.reversec.com/tags/spikeehttps://labs.reversec.com/tags/sqlihttps://labs.reversec.com/tags/sshhttps://labs.reversec.com/tags/ssrfhttps://labs.reversec.com/tags/static-analysishttps://labs.reversec.com/tags/steelconhttps://labs.reversec.com/tags/swifthttps://labs.reversec.com/tags/sydighttps://labs.reversec.com/tags/symantechttps://labs.reversec.com/tags/syscan360https://labs.reversec.com/tags/sysmonhttps://labs.reversec.com/tags/t2https://labs.reversec.com/tags/terehttps://labs.reversec.com/tags/terraformhttps://labs.reversec.com/tags/tfchttps://labs.reversec.com/tags/threat-huntinghttps://labs.reversec.com/tags/toolhttps://labs.reversec.com/tags/troopershttps://labs.reversec.com/tags/uachttps://labs.reversec.com/tags/uarthttps://labs.reversec.com/tags/usbhttps://labs.reversec.com/tags/use-after-freehttps://labs.reversec.com/tags/vbahttps://labs.reversec.com/tags/vdihttps://labs.reversec.com/tags/virtualboxhttps://labs.reversec.com/tags/vmwarehttps://labs.reversec.com/tags/vpc-peeringhttps://labs.reversec.com/tags/vrfhttps://labs.reversec.com/tags/webkithttps://labs.reversec.com/tags/weboshttps://labs.reversec.com/tags/websocketshttps://labs.reversec.com/tags/webusbhttps://labs.reversec.com/tags/webviewshttps://labs.reversec.com/tags/whitepaperhttps://labs.reversec.com/tags/windowshttps://labs.reversec.com/tags/windows-lapshttps://labs.reversec.com/tags/windows-phonehttps://labs.reversec.com/tags/windows-securityhttps://labs.reversec.com/tags/withsecurehttps://labs.reversec.com/tags/wordpresshttps://labs.reversec.com/tags/xamarinhttps://labs.reversec.com/tags/xsshttps://labs.reversec.com/tags/xxehttps://labs.reversec.com/tags/zeronightshttps://labs.reversec.com/talkshttps://labs.reversec.com/talks/44con-2012/security-testing-4g-lte-networkshttps://labs.reversec.com/talks/44con-2013/hack-the-gibson-exploiting-supercomputershttps://labs.reversec.com/talks/44con-2017/biting-the-apple-that-feeds-you-macos-kernel-fuzzinghttps://labs.reversec.com/talks/44con-2017/persisting-with-microsoft-office-abusing-extensibility-optionshttps://labs.reversec.com/talks/44con-2018/ghost-in-the-locks-owning-electronic-locks-without-leaving-a-tracehttps://labs.reversec.com/talks/44con-2025/another-prompt-bites-the-dust-practical-prompt-injection-testing-and-guardrail-bypass-with-spikeehttps://labs.reversec.com/talks/aeronov-connection/real-life-experiences-in-avionics-security-assessmenthttps://labs.reversec.com/talks/air-power-conference/cyber-warfare-and-air-operationshttps://labs.reversec.com/talks/airbus-cycon/tamago-bare-metal-gohttps://labs.reversec.com/talks/appsec-usa-2016/needle-finding-issues-within-ios-applicationshttps://labs.reversec.com/talks/asilomar-microcomputer-workshop/tamago-bare-metal-gohttps://labs.reversec.com/talks/aws-cloud-security-community-day-2023/securing-aws-estates-at-scalehttps://labs.reversec.com/talks/aws-community-day-dach-2023/clear-skies-avoiding-security-breaches-in-awshttps://labs.reversec.com/talks/aws-community-day-nordics-2023/securing-aws-estates-at-scalehttps://labs.reversec.com/talks/balccon-2024/taking-the-b-out-of-dba-an-unconventional-attack-path-against-ad-fs-through-database-administrationhttps://labs.reversec.com/talks/beacon-2024/hunting-for-macos-application-logic-bugs-logic-not-includedhttps://labs.reversec.com/talks/beacon-2024/taking-the-b-out-of-dba-an-unconventional-attack-path-against-ad-fs-through-database-administrationhttps://labs.reversec.com/talks/black-hat-usa-2012/pinpadpwnhttps://labs.reversec.com/talks/black-hat-usa-2014/mission-mpossiblehttps://labs.reversec.com/talks/black-hat-usa-2019/command-injection-in-f5-iruleshttps://labs.reversec.com/talks/black-hat-usa-2021/come-to-the-dark-side-we-have-apples-turning-macos-management-evilhttps://labs.reversec.com/talks/black-hat-usa-2021/im-a-hacker-get-me-out-of-here-breaking-network-segregation-using-esoteric-command-control-channelshttps://labs.reversec.com/talks/blackhat-europe-arsenal-2025/spikee-simple-prompt-injection-kit-for-evaluation-and-exploitationhttps://labs.reversec.com/talks/blackhat-sector-arsenal-2025/spikee-simple-prompt-injection-kit-for-evaluation-and-exploitationhttps://labs.reversec.com/talks/blue-hat-v17-2017/corrupting-memory-in-microsoft-office-protected-view-sandboxhttps://labs.reversec.com/talks/blue-hat-v18-2018/overt-command-control-the-art-of-blending-inhttps://labs.reversec.com/talks/blue-team-con-2022/breaking-boundaries-securing-perimeters-a-pragmatic-approach-to-attack-surface-managementhttps://labs.reversec.com/talks/blue-team-con-2022/saasy-detection-purple-teaming-software-as-a-service-platformshttps://labs.reversec.com/talks/bsides-athens-2021/click-here-for-free-tv-chaining-bugs-to-takeover-wind-vision-accountshttps://labs.reversec.com/talks/bsides-bristol-2019/voodoo-peoplehttps://labs.reversec.com/talks/bsides-cape-town-2014/fracking-with-hybrid-mobile-applicationshttps://labs.reversec.com/talks/bsides-dublin-2023/sniffing-keyboards-turns-out-some-of-them-stinkhttps://labs.reversec.com/talks/bsides-dublin-2024/you-sheall-not-pass-gentle-introduction-to-edr-bypasseshttps://labs.reversec.com/talks/bsides-london-2014/poor-mans-static-analysishttps://labs.reversec.com/talks/bsides-london-2015/why-bother-assessing-popular-softwarehttps://labs.reversec.com/talks/bsides-london-2016/bug-hunting-with-static-code-analysishttps://labs.reversec.com/talks/bsides-london-2016/lora-the-explorer-attacking-and-defending-lora-systemshttps://labs.reversec.com/talks/bsides-london-2023/open-sesame-unlocking-bluetooth-padlocks-with-polite-requestshttps://labs.reversec.com/talks/bsides-london-2025/living-on-the-edge-abuse-of-microsoft-edge-for-persistencehttps://labs.reversec.com/talks/bsides-manchester-2015/detect-protect-securing-financial-applications-in-hostile-environmentshttps://labs.reversec.com/talks/bsides-nyc-2016/99-problems-but-a-microkernel-aint-onehttps://labs.reversec.com/talks/bsides-nyc-2016/the-pageantry-of-lateral-movementhttps://labs.reversec.com/talks/bsides-nyc-2018/signal-safari-investigating-rf-controls-with-rtl-sdrhttps://labs.reversec.com/talks/bsidesljubljana-0x7e7/say-cheese-capturing-your-life-through-exported-activitieshttps://labs.reversec.com/talks/bsidesljubljana-0x7e8/mobile-security-theater-or-why-you-should-pay-1000000-for-two-regex-querieshttps://labs.reversec.com/talks/bsidesvarazdin/usb-armory-reloadedhttps://labs.reversec.com/talks/cansecwest-2017/logic-bug-hunting-in-chrome-on-androidhttps://labs.reversec.com/talks/cansecwest-2018/chainspotting-building-exploit-chains-with-logic-bugshttps://labs.reversec.com/talks/cansecwest/armored-witnesshttps://labs.reversec.com/talks/chaos-communication-congress/tamago-bare-metal-gohttps://labs.reversec.com/talks/cloud-native-security-day-2020/building-effective-attack-detection-in-the-cloudhttps://labs.reversec.com/talks/confidence-2016/qnx-99-problems-but-a-microkernel-aint-onehttps://labs.reversec.com/talks/crestcon-2015/fracking-with-hybrid-mobile-applicationshttps://labs.reversec.com/talks/crestcon-2024/should-you-let-chatgpt-control-your-browserhttps://labs.reversec.com/talks/dc4420-2016/warranty-void-if-label-removed-attacking-mpls-networkshttps://labs.reversec.com/talks/deathcon-2024/building-and-validating-kubernetes-attack-detection-with-leonidashttps://labs.reversec.com/talks/deepsec-2008/behind-enemy-lines-administrative-web-application-attackshttps://labs.reversec.com/talks/deepsec-2012/sap-slapping-a-pentesters-guidehttps://labs.reversec.com/talks/deepsec-2013/hack-the-gibson-exploiting-supercomputershttps://labs.reversec.com/talks/deepsec-2017/lock-stock-and-two-smoking-apples-xnu-kernel-securityhttps://labs.reversec.com/talks/deepsec-2024/hacking-and-securing-llm-applicationshttps://labs.reversec.com/talks/def-con-2006/ibm-networking-attacks-or-the-easiest-way-to-own-a-mainframe-without-getting-the-removals-men-inhttps://labs.reversec.com/talks/def-con-2007/mq-jumpinghttps://labs.reversec.com/talks/def-con-2007/one-token-to-rule-them-all-post-exploitation-fun-in-windows-environmentshttps://labs.reversec.com/talks/def-con-2008/virtually-hackinghttps://labs.reversec.com/talks/def-con-2009/usb-attacks-fun-with-plug-0wnhttps://labs.reversec.com/talks/def-con-2016/platform-agnostic-kernel-fuzzinghttps://labs.reversec.com/talks/def-con-2017/persisting-with-microsoft-office-abusing-extensibility-optionshttps://labs.reversec.com/talks/def-con-2018/hacking-ble-bicycle-locks-for-fun-and-a-small-profithttps://labs.reversec.com/talks/def-con-2020/getting-shells-on-zos-with-surrogat-chainshttps://labs.reversec.com/talks/def-con-appsec-village-2023/per-mission-impossible-exploring-the-android-permission-model-and-intentshttps://labs.reversec.com/talks/def-con-cloud-village-2020/attacking-the-helmsmanhttps://labs.reversec.com/talks/def-con-demo-labs-2022/alsannahttps://labs.reversec.com/talks/defcon-adversary-village-2024/kubernetes-attack-simulation-the-definitive-guidehttps://labs.reversec.com/talks/defcon-cloud-village-2025/cognito-ergo-some-extra-permissionshttps://labs.reversec.com/talks/devseccon-london-2016/static-analysis-for-code-and-infrastructurehttps://labs.reversec.com/talks/devseccon-london-2018/whatever-happened-to-attack-aware-applicationshttps://labs.reversec.com/talks/disobey-2018/all-your-encrypted-computers-are-belongs-to-ushttps://labs.reversec.com/talks/disobey-2019/ghost-in-the-locks-owning-electronic-locks-without-leaving-a-tracehttps://labs.reversec.com/talks/disobey-2020/identifying-attack-paths-with-bloodhoundhttps://labs.reversec.com/talks/disobey-2020/lets-get-physicalhttps://labs.reversec.com/talks/disobey-2023/dangers-of-service-as-a-principal-awshttps://labs.reversec.com/talks/disobey-2023/stormy-skies-modern-cloud-attacks-and-their-countermeasureshttps://labs.reversec.com/talks/disobey-2025/navigating-chaos-a-ransomware-and-exfiltration-attackhttps://labs.reversec.com/talks/disobey-2025/out-of-order-protocol-confusion-attacks-in-the-real-worldhttps://labs.reversec.com/talks/districtcon-2025/to-b-or-not-2b-breaking-the-ibm-b2b-integrator-with-and-without-authenticationhttps://labs.reversec.com/talks/ekoparty-2015/warranty-void-if-label-removed-attacking-mpls-networkshttps://labs.reversec.com/talks/escar-asia/insecure-boothttps://labs.reversec.com/talks/escar-europe/insecure-boothttps://labs.reversec.com/talks/fist-conference-2007/inspect-a-gadgethttps://labs.reversec.com/talks/fsec-iot-hacking-summer-school/mastering-arm-trustzonehttps://labs.reversec.com/talks/fsec-iot-hacking-summer-school/real-life-experiences-in-avionics-security-assessmenthttps://labs.reversec.com/talks/fwdcloudsec-2024/one-extra-large-cloud-assessment-please-why-testing-at-scale-needs-a-different-approachhttps://labs.reversec.com/talks/fwdcloudsec-2025/this-wasnt-in-the-job-description-building-a-production-ready-aws-environment-from-scratchhttps://labs.reversec.com/talks/fwdcloudsec-europe-2025/azure-arc-from-a-heartbeat-to-heart-attackhttps://labs.reversec.com/talks/fwdcloudsec-europe-2025/strifebot-attacking-and-defending-snowflake-data-lakeshttps://labs.reversec.com/talks/fwdcloudsec-north-america-2020/automating-attack-simulation-in-the-cloudhttps://labs.reversec.com/talks/fwdcloudsec-north-america-2021/has-anyone-seen-the-principalhttps://labs.reversec.com/talks/fwdcloudsec-north-america-2022/dismantling-the-beast-formally-proving-access-at-scale-in-awshttps://labs.reversec.com/talks/fwdcloudsec-north-america-2023/passing-the-security-burden-how-to-see-the-unforeseenhttps://labs.reversec.com/talks/golab/tamago-bare-metal-gohttps://labs.reversec.com/talks/hack-in-the-box-sg-2016/fuzzing-the-windows-kernelhttps://labs.reversec.com/talks/hack-in-the-box/usb-armory-reloadedhttps://labs.reversec.com/talks/hacklu-2018/intro-to-binary-analysis-with-z3-and-angrhttps://labs.reversec.com/talks/hacktivity-2018/the-mate-escape-android-pwn2owninghttps://labs.reversec.com/talks/hope-2016/a-penetration-testers-guide-to-the-azure-cloudhttps://labs.reversec.com/talks/infiltrate-2017/logic-bug-hunting-in-chrome-on-androidhttps://labs.reversec.com/talks/infiltrate-2018/chainspotting-building-exploit-chains-with-logic-bugshttps://labs.reversec.com/talks/layerone-2018/signal-safari-investigating-rf-controls-with-rtl-sdrhttps://labs.reversec.com/talks/misc0nfig-2025/open-sesame-unlocking-bluetooth-padlocks-with-polite-requestshttps://labs.reversec.com/talks/no-hat/usb-armory-reloadedhttps://labs.reversec.com/talks/nordic-security-conference-2013/polishing-chrome-for-fun-and-profithttps://labs.reversec.com/talks/objective-by-the-sea-2020/an-attackers-perspective-on-jamf-configurationshttps://labs.reversec.com/talks/offensivecon-2019/3d-accelerated-exploitationhttps://labs.reversec.com/talks/offensivex-2025/there-and-back-again-an-attackers-tale-of-dcs-in-awshttps://labs.reversec.com/talks/open-source-firmware-conference/tamago-bare-metal-gohttps://labs.reversec.com/talks/pacsec-2015/warranty-void-if-label-removed-attacking-mpls-networkshttps://labs.reversec.com/talks/pacsec/insecure-boothttps://labs.reversec.com/talks/rootcon-2021/click-here-for-free-tv-chaining-bugs-to-takeover-wind-vision-accountshttps://labs.reversec.com/talks/rsa-conference-2019/future-forests-realistic-strategies-for-ad-security-red-forest-architecturehttps://labs.reversec.com/talks/rsa-conference-2021/beyond-public-buckets-lessons-learned-on-attack-detection-in-the-cloudhttps://labs.reversec.com/talks/sec-t-2023/methods-of-lateral-movement-using-windows-opensshhttps://labs.reversec.com/talks/secureai-2025/effort-is-all-you-need-bypassing-llm-guardrails-with-spikeehttps://labs.reversec.com/talks/securi-tay-2025/finding-your-attack-path-into-the-security-industryhttps://labs.reversec.com/talks/security-fest-2018/re-using-your-targets-code-against-themhttps://labs.reversec.com/talks/security-fest-2019/domxss-is-not-deadhttps://labs.reversec.com/talks/shmoocon-2010/how-to-be-an-rsol-effective-bug-hunting-in-solarishttps://labs.reversec.com/talks/snoopcon-2023/1001-segfaults-tales-of-stealthy-linux-in-memory-executionhttps://labs.reversec.com/talks/so-con-2025/there-and-back-again-an-attackers-tale-of-dcs-in-awshttps://labs.reversec.com/talks/spime2017/iot-securityhttps://labs.reversec.com/talks/steelcon-2017/a-chain-is-only-as-strong-as-its-weakest-win32khttps://labs.reversec.com/talks/steelcon-2024/lets-hack-a-not-so-smart-padlockhttps://labs.reversec.com/talks/syscan-360-2016/lora-the-explorer-attacking-and-defending-lora-systemshttps://labs.reversec.com/talks/syscan-2014/navigating-the-sea-of-pwn-windows-phone-8https://labs.reversec.com/talks/t2-2006/200-mkay-web-application-exploitationhttps://labs.reversec.com/talks/t2-2008/sun-burns-java-insecuritieshttps://labs.reversec.com/talks/t2-2009/usb-attacks-fun-with-plug-0wnhttps://labs.reversec.com/talks/t2-2010/attacking-atms-putting-the-art-into-smart-cardshttps://labs.reversec.com/talks/t2-2010/the-threat-in-your-pockethttps://labs.reversec.com/talks/t2-2011/critical-infrastructure-insecurity-why-vendor-obscurity-will-kick-us-in-the-teethhttps://labs.reversec.com/talks/t2-2011/windows-pwn-7-oem-owned-every-mobilehttps://labs.reversec.com/talks/t2-2012/pinpadpwnhttps://labs.reversec.com/talks/t2-2012/sap-slapping-a-pentesters-guidehttps://labs.reversec.com/talks/t2-2013/hack-the-gibson-exploiting-supercomputershttps://labs.reversec.com/talks/t2-2014/keyless-entry-explorationexploitationhttps://labs.reversec.com/talks/t2-2014/style-over-substance-how-oems-are-breaking-android-securityhttps://labs.reversec.com/talks/t2-2015/forging-the-usb-armoryhttps://labs.reversec.com/talks/t2-2015/washing-away-the-snake-oil-of-threat-intelligencehttps://labs.reversec.com/talks/t2-2015/windows-kernel-fuzzinghttps://labs.reversec.com/talks/t2-2016/one-template-to-rule-em-allhttps://labs.reversec.com/talks/t2-2017/exploring-enterprise-wi-fi-security-with-arubahttps://labs.reversec.com/talks/t2-2018/an-ice-cold-boot-to-break-bitlockerhttps://labs.reversec.com/talks/t2-2018/assessing-digital-physical-access-control-systemshttps://labs.reversec.com/talks/t2-2018/big-game-fuzzing-going-on-a-pwn2own-safarihttps://labs.reversec.com/talks/t2-2019/detecting-sophisticated-threat-actors-in-awshttps://labs.reversec.com/talks/t2-2019/usb-armory-reloadedhttps://labs.reversec.com/talks/tensec-2018/chainspotting-building-exploit-chains-with-logic-bugshttps://labs.reversec.com/talks/texas-cyber-summit-2019/dk-1016-docker-security-workshophttps://labs.reversec.com/talks/transparencydev-summit/armored-witnesshttps://labs.reversec.com/talks/troopers-2016/qnx-99-problems-but-a-microkernel-aint-onehttps://labs.reversec.com/talks/troopers-2022/unorthodox-lateral-movement-stepping-away-from-the-standard-tradecrafthttps://labs.reversec.com/talks/wild-west-hackin-fest-2018/red-teaming-in-the-edr-agehttps://labs.reversec.com/talks/x33fcon-2024/hunting-for-macos-application-logic-bugs-logic-not-includedhttps://labs.reversec.com/talks/zeronights-2015/warranty-void-if-label-removed-attacking-mpls-networkshttps://labs.reversec.com/toolshttps://labs.reversec.com/tools/android-keystore-audithttps://labs.reversec.com/tools/awspxhttps://labs.reversec.com/tools/azure-service-tag-abusehttps://labs.reversec.com/tools/bitlocker-spi-toolkithttps://labs.reversec.com/tools/boops-boops-android-agenthttps://labs.reversec.com/tools/boops-boops-docker-containerhttps://labs.reversec.com/tools/c3https://labs.reversec.com/tools/captcha22https://labs.reversec.com/tools/cloud-security-vmhttps://labs.reversec.com/tools/cloud-wikihttps://labs.reversec.com/tools/cue-covid-test_research-fileshttps://labs.reversec.com/tools/cve-2021-25374_samsung-account-accesshttps://labs.reversec.com/tools/damn-vulnerable-llm-agenthttps://labs.reversec.com/tools/drozerhttps://labs.reversec.com/tools/drozer-agenthttps://labs.reversec.com/tools/drozer-moduleshttps://labs.reversec.com/tools/encap-attackhttps://labs.reversec.com/tools/fixerupperhttps://labs.reversec.com/tools/fixithttps://labs.reversec.com/tools/freezerhttps://labs.reversec.com/tools/iamgraphhttps://labs.reversec.com/tools/iamspyhttps://labs.reversec.com/tools/icekubehttps://labs.reversec.com/tools/jamf-attack-toolkithttps://labs.reversec.com/tools/jandroidhttps://labs.reversec.com/tools/keywe-toolinghttps://labs.reversec.com/tools/leonidashttps://labs.reversec.com/tools/llama-3-prompt-injection-fine-tuninghttps://labs.reversec.com/tools/llm-vulnerable-recruitment-apphttps://labs.reversec.com/tools/lolcertshttps://labs.reversec.com/tools/megafeis-palmhttps://labs.reversec.com/tools/needlehttps://labs.reversec.com/tools/oracrawlhttps://labs.reversec.com/tools/peashttps://labs.reversec.com/tools/physmem2profithttps://labs.reversec.com/tools/sievehttps://labs.reversec.com/tools/spikeehttps://labs.reversec.com/tools/usb-consumer-controlhttps://labs.reversec.com/tools/workout-plannerhttps://labs.reversec.com/vulnerability-disclosure-policy