




Recent News

A patch for PowerSploit’s Invoke-Shellcode.ps1
In my recent and somewhat surprising exploration of Windows PowerShell (stay tuned for a longer…
In praise of tactical exploitation
Having honed my skills during the X.25 and Phreaking era, I've always been a vocal proponent…
Advanced mobile penetration testing with Brida – Slides HackInBo 2017 WE
Hi! Here you can download the slides of my talk presented at HackInBo 2017 Winter…
Handy Collaborator – Because Burp Suite Collaborator is useful also during manual testing!
Hi! Today I will show you a new Burp Suite plugin, Handy Collaborator, that the…
Tracing arbitrary Methods and Function calls on Android and iOS
I have published two new Frida instrumentation scripts to facilitate reverse engineering of mobile apps.…
Detection payload for the new Struts REST vulnerability (CVE-2017-9805)
Hi! I built a new payload useful for the detection of the presence of the…
Brida: Advanced Mobile Application Penetration Testing with Frida
Introduction Brida is a Burp Suite Extension that, working as a bridge between Burp Suite…