Day[0]

A weekly podcast for bounty hunters, exploit developers or anyone interesting in the details of the

Episodes

Total: 267

Fingerprinting Exploit Devs, BLURtooth and Punking Punkbuster
2020/10/6

Every wondering how you might fingerprint and trace exploit devs in the wild? Wondered what a backdo

Instagram Hacks, Half-life 1 Exploits, and Gaslighting Android
2020/9/29

Lets go back in time to look at the leaked WinXP source, and a Half-Life 1 exploit. And, while we ar

Bhyves and Evil LEDs (+Roulette)
2020/9/22

A "trivial" Bhyve VM escape, a BitWarden "RCE", a ModSecurity "Denial of Service" and more scare quo

Raccoons, Incomplete fixes and Kernel Exploits
2020/9/15

Leading off this week's discussion is the news about the now remote CCC and Offensive Security's pla

Zoom E2E, 15 year old bugs, and killing 20 year old attacks
2020/5/26

The DAY[0] podcast will be on break until September 14, 2020 A quick chat about E2E Crypto and Zoom,

iOS 0days are worthless, PrintDemon, and a takeover of hackerone
2020/5/19

Are iOS 0days now worthless? Can you hack a satellite...or hackerone? Are WAFs worthwhile? And more

Defcon is canceled, Microsoft was hacked, Rust has vulns
2020/5/12

Update: While we talk about Huawei Kernel Self Protection (HKSP) I make mention of the authors state

Auth Bypass, XSS, RCE and more
2020/5/5

Authentication bypasses, SQL injection, command injection, and more in this web-exploit heavy episod

Relyze Decompiler, jQuery XSS, Sandbox Escaping and 0-Click Mail RCE
2020/4/28

Since we forgot to cover it when it came out, we look at Relyze's new decompiler that is available o

Binary Ninja's Decompiler, git credential leak, cross-platform LPEs
2020/4/21

Zoom vuln worth $500k? Probably not... What is worth $500k? Binary Ninja's new decompiler...okay pro

IDA...Go home, Sandboxie source, and some RCEs (TP-Link, Starcraft 1, OhMyZsh)
2020/4/14

Starting off the week with a discussion about the disappointing IDA Home, before moving into a few e

Zoom-ers, VM Escapes, and Pegasus Resurfaces
2020/4/7

First, we talk about Facebook trying to buy some spyware, and then we feast upon a number of Zoom "v

A shortcut (.lnk) to RCE, Pi-Hole, Shadow Stacks, and fine-grained kASLR
2020/3/31

Is there a shortcut to RCE? Well, on Windows .LNK files could be just that. We also talk about a few

Pwn2Own Results, Voatz (again), some web-exploits and a code-reuse mitigation
2020/3/24

More discussion about election hacking with Voatz undergoing a more complete security assessment, we

How to Hack a CTF and more (LVI, TRRespass and some web-exploits)
2020/3/17

Start off by looking at a few Google Cloud attacks, a couple named vulns (LVI: Load Value Injection,

FuzzBench, MediaTek-su, Request Smuggling, and Memory Tagging
2020/3/10

A New AMD sidechannel, and an old intel CSME attack, a couple deserialization attacks, and a few cle

kr00k, GhostCat, and more issues from NordVPN, Samsung, OpenSMTPd
2020/3/3

Join Specter and zi at they discuss several named vulns (kr00k, Forgot2kEyXCHANGE, GhostCat), the be

A Dark White-Hat hacker? and various vulns ft. Cisco, Periscope, NordVPN and Tesla/EyeQ
2020/2/25

Keeping up our streak, we talk about some vulnerabilities in Cisco, NordVPN and Tesla, and about Sli

A New PWK/OSCP, Election Hacking, Kernel Exploits, and Fuzzing
2020/2/18

Is the new OSCP worth-it? Can election apps be made secure? We'll talk about those questions and sev

Hack Twitter, WhatsApp and all your Cisco phones (CDPwn) ft. GhostKnight
2020/2/11

Android, Bluetooth, Microsoft, NordVPN, Twitter, WhatsApp, Cisco, vulns for days impacting several b