Conference
Archived
Panel Discussion: Wie wir über Software denken
I was part of a keynote panel discussion about the future of software and security at the JAX conference.
I was part of a keynote panel discussion about the future of software and security at the JAX conference.
Details about the vulnerability class Untrusted Deserialization.
I’ve had the chance to present my talk Security DevOps about the integration of security checks into DevOps processes at OWASP AppSecEU in Cambridge.
Writeup of my Same-Origin Policy Bypass in Chrome with SVG (CVE-2014-3160).
Generic Detection of XML External Entity (XXE) Vulnerabilities.
Details about the vulnerability class I identified in the HTML5 WebSocket specification (RFC 6455).