Blog Posts
Here you can find all blog posts that I have published.
Artificial Intelligence (1)
- Dec 30, 2024Simple Prompts to get the System PromptsExploring prompt injection techniques to extract hidden system prompts from popular AI wrappers and chatbots.
Community (2)
- Apr 21, 2024The curse of blindness and knowledgeA reflection on how both lack of knowledge and overconfidence can hinder progress, and strategies to find balance.
- Aug 20, 2023A list of good and bad learning resourcesA curated list of recommended and discouraged resources for learning programming and technology, with explanations for each.
Programming (2)
- Jan 12, 2023Utilizing unit testing frameworks as a vulnerability scannerHow to use unit testing frameworks like xUnit for automated vulnerability scanning and exploit development.
- Jun 9, 2020Dynamic importing stuff in PythonA practical guide to traditional and dynamic importing in Python, including importlib, relative imports, and best practices.
Security (3)
- Apr 7, 2021Getting Started with Greybox TestingA practical introduction to greybox testing for hackers and security researchers, including methodology, target selection, and reporting vulnerabilities.
- Apr 7, 2021Coping with Burnout as a Security ResearcherInsights and advice on dealing with burnout in the world of security research and bug bounty hunting.
- Dec 27, 2020You don’t need xss.rocks/xss.jsWhy data URLs are a powerful alternative to hosted JavaScript files for XSS testing and payload delivery.