Attacking a scripting language's cryptographic functions with Wycheproof

Introduction In 2016, Google released Project Wycheproof. Put into simple terms, Wycheproof is a set of testcases for cryptographic libraries which have been formulated to pick up mistakes and pitfalls of certain cryptographic algorithms. If any of the testcases fail, it may indicate a vulnerability in the cryptographic library. If any of the t... Read more

Creating an eBay crawler for fun and profit

My first video game was a Gameboy Advance SP (the obviously superior blue version). Other than Pokemon (Sapphire Blue!), my favorite game was Super Mario World: Super Mario Advance 2. However, since I was young, I’ve always been interested in old video games. Whether that be the Magnavox Odyssey, Atari, Intellivision, or later consoles like the ... Read more

How I got into the security industry

One of the most common questions I get related to my job (other than, what does it mean to work in online security?) is how I got into the industry. “How did I become a hacker?”, and “how can I do it too?” are common questions. Unfortunately, the true answer is never what people want; there is no simple method to get into this industry, and unle... Read more