EvilPacket

follow: @[email protected]

Posts

Old EvilPacket Videos

Attacking OSS Using Abandoned Resources

Headless Holiday Hack: Flag 1

My Favorite Vulnerability: From ERROR to inter-protocol exploitation

Identify an O.MG Cable

Using Chrome Debugger Metasploit Gather Module

Leveraging Javascript Debuggers for compromise

CVE / Vulnerabilities / Advisories

CVE / Vulnerabilities / Advisories

Presentations and Podcasts

Enumerating Files Using Server Side Request Forgery and the request Module

npm Registry Spelunking: Dependencies Referenced by URL

Bypassing npm / yarn ignore Scripts with Command Injection

My story about mentorship and my career

In Memory Backdoor for Node.js Express Apps

Compromising Node.js apps using Machine-in-the-Middle

Pillaging Distributed Version Control 5 Years Later

What Are the Bots Up to on npm?

Atom.io Misconfiguration Allowed Code Execution on Untrusted Networks

Brilliant Hire Exposure No Bounty

Regular Expression Denial of Service Affecting Express.js