Blog Posts
Here you can find all blog posts that I have published.
Artificial Intelligence (1)
- Dec 30, 2024
Simple Prompts to get the System PromptsExploring prompt injection techniques to extract hidden system prompts from popular AI wrappers and chatbots.
Community (2)
- Apr 21, 2024
The curse of blindness and knowledgeA reflection on how both lack of knowledge and overconfidence can hinder progress, and strategies to find balance. - Aug 20, 2023
A list of good and bad learning resourcesA curated list of recommended and discouraged resources for learning programming and technology, with explanations for each.
Programming (2)
- Jan 12, 2023
Utilizing unit testing frameworks as a vulnerability scannerHow to use unit testing frameworks like xUnit for automated vulnerability scanning and exploit development. - Jun 9, 2020
Dynamic importing stuff in PythonA practical guide to traditional and dynamic importing in Python, including importlib, relative imports, and best practices.
Security (3)
- Apr 7, 2021
Getting Started with Greybox TestingA practical introduction to greybox testing for hackers and security researchers, including methodology, target selection, and reporting vulnerabilities. - Apr 7, 2021
Coping with Burnout as a Security ResearcherInsights and advice on dealing with burnout in the world of security research and bug bounty hunting. - Dec 27, 2020
You don’t need xss.rocks/xss.jsWhy data URLs are a powerful alternative to hosted JavaScript files for XSS testing and payload delivery.