Day[0]

Log4j RCE coming to a service near you and uBlock CSS Injection [Bounty]

2021/12/15

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

MediaTek, Yet Another Chrome Bug, and BigSig [Binary Exploitation]

2021/12/9

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

Bypassing MFA, WebCache Poisoning, and AWS SageMaker [Bounty Hunting]

2021/12/7

Some readily understood vulnerabilities, but with some interesting impacts, from escalating self-XSS

KVM Bugs and an iOS IOMFB Kernel Exploit [Binary Exploitation]

2021/12/2

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

GitLab Prototype Pollution and Some Authentication Bypasses [Bounty Hunting]

2021/11/30

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

Hacking Neural Nets, a Chrome WebRTC UAF and Pwning Windows [Binary Exploitation]

2021/11/25

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

Big Bounties by Exploiting WebKit's CSP & Concrete CMS Bugs [Bounty Hunting]

2021/11/23

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

DDR4 Rowhammer, Azure Bugs, "Essential 0days", and Backdoored IDA [Binary Exploitation]

2021/11/18

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

Rust in the Web? A Special Guest and some Bad Crypto [Bounty Hunting]

2021/11/16

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

A too trusty TrustZone and a few Linux Kernel bugs [Binary Exploitation]

2021/11/11

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

A MacOS SIP Bypass & an XSS Fiesta [Bounty Hunting]

2021/11/9

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

Type Confusion in Android NFC, PHP-FPM Local Privilege Escalation, and CallbackHell [Binary Exploitation]

2021/11/4

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

Discourse SNS RCE, a Stored XSS in GitLab, and a Reddit Race Condition [Bug Hunting]

2021/11/2

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

A Kernel Race, SuDump, and a Chrome Garbage Collector Bug [Exploit Dev/VR]

2021/10/28

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

A Slack Attack and a MySQL Scientific Notation Bug [Bug Hunting]

2021/10/26

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

WebKit Bugs, a Windows Race, and House of IO Improved [Exploit Dev/VR]

2021/10/21

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

WebSocket Hijacking, GitHub review bypass and SQLi to RCE [Bug Hunting]

2021/10/19

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

HyperKit Bugs & an Open5GS Stack Overflow [Binary Exploitation]

2021/10/14

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

SharePoint RCE & an Apache Path Traversal [Bug Hunting]

2021/10/12

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

Chrome Exploits and a Firefox Update Bug [Binary Exploitation]

2021/10/7

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/

Episodes

Log4j RCE coming to a service near you and uBlock CSS Injection [Bounty]

MediaTek, Yet Another Chrome Bug, and BigSig [Binary Exploitation]

Bypassing MFA, WebCache Poisoning, and AWS SageMaker [Bounty Hunting]

KVM Bugs and an iOS IOMFB Kernel Exploit [Binary Exploitation]

GitLab Prototype Pollution and Some Authentication Bypasses [Bounty Hunting]

Hacking Neural Nets, a Chrome WebRTC UAF and Pwning Windows [Binary Exploitation]

Big Bounties by Exploiting WebKit's CSP & Concrete CMS Bugs [Bounty Hunting]

DDR4 Rowhammer, Azure Bugs, "Essential 0days", and Backdoored IDA [Binary Exploitation]

Rust in the Web? A Special Guest and some Bad Crypto [Bounty Hunting]

A too trusty TrustZone and a few Linux Kernel bugs [Binary Exploitation]

A MacOS SIP Bypass & an XSS Fiesta [Bounty Hunting]

Type Confusion in Android NFC, PHP-FPM Local Privilege Escalation, and CallbackHell [Binary Exploitation]

Discourse SNS RCE, a Stored XSS in GitLab, and a Reddit Race Condition [Bug Hunting]

A Kernel Race, SuDump, and a Chrome Garbage Collector Bug [Exploit Dev/VR]

A Slack Attack and a MySQL Scientific Notation Bug [Bug Hunting]

WebKit Bugs, a Windows Race, and House of IO Improved [Exploit Dev/VR]

WebSocket Hijacking, GitHub review bypass and SQLi to RCE [Bug Hunting]

HyperKit Bugs & an Open5GS Stack Overflow [Binary Exploitation]

SharePoint RCE & an Apache Path Traversal [Bug Hunting]

Chrome Exploits and a Firefox Update Bug [Binary Exploitation]