Pivoting from blind SSRF to RCE with HashiCorp Consul

From MLOps to MLOops: Exposing the Attack Surface of Machine Learning Platforms

Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!

Studying 0days: How we hacked Anki, the world's most popular flashcard app

We hacked Anki - 0 day exploit from studying someone elses flashcards

Evernote RCE: From PDF.js font-injection to All-platform Electron exposed ipcRenderer with listened BrokerBridge Remote-Code Execution