Every XSS is a site takeover
Despite being one of the most common vulnerabilities in WordPress, XSS is often underrated. Let's discover its full potential.
Writing makes you live twice.
My thoughts on coding, hacking, with a small touch of my personal life.
Vulnerable by Design
The rise of Machine Learning is bringing new security challenges, but apparently old ones still pose a significant risk.
Please Update As Soon As Possible
The WordPress ecosystem needs more security-oriented code, here is where I would start.
Learning from False Positives
How some disappointing false positive vulnerabilities led me to interesting discoveries.
Thoughts on Artificial Intelligence
Artificial Intelligence is here to stay, let's explore the capabilities, the opportunities and the risks.
About Books and Blockchain
I published my first book - The Hacker Mindset - and imagined a blockchain based publication process.
Securing Easy Appointments and earning CVE-2022-0482
How I helped Easy Appointments to fix a high severity vulnerability and earned CVE-2022-0482.
Takeaways from two years of code vetting at Codeable
A break-down of common coding mistakes I've seen during the past years and some tips to level-up your code and better prepare a coding interview.
An image is all it takes to violate your privacy
The Internet was not built with privacy in mind. In fact, all it takes to violate it is a single HTTP request.
WordPress passwords, explained and cracked
Understanding WordPress password hashing system, then breaking it.
The HTTP headers you don't expect
Have you ever thought to find your next job in an HTTP header? cURL can reveal this and many more secrets.
Understanding WordPress Mass Hacking
Demistify the WordPress mass hacking process and learn how to better protect your websites.
My story at Codeable
Being a good coder is not enough! My experience at Codeable from the trial to crossing 1000 projects.
Coding a simple TweetBot in Python (while in quarantine)
My journey coding a fully automated Twitter Bot in Python as a quarantine side-project.