Danny Grander

SourMint: iOS remote code execution, Android findings, and community response

15 octobre 2020

PCI standards open source security requirements — how to comply?

23 juillet 2019

A post-mortem of the malicious event-stream backdoor

6 décembre 2018

Malicious code found in npm package event-stream downloaded 8 million times in the past 2.5 months

27 novembre 2018

Behind the disclosure: the Zip Slip vulnerability

15 août 2018

Public Disclosure of a Critical Arbitrary File Overwrite Vulnerability: Zip Slip

5 juin 2018

Attacking an FTP Client: MGETting more than you bargained for

4 avril 2018

Where do security patches come from?

25 janvier 2018

Python 2 vs 3: Security Differences

10 octobre 2017

Using Node.js event loop for timing attacks

16 février 2016