Security Write-Ups

Pushing the boundaries of Web security and privacy.

Explore Now!

Articles

Under the radar

Under the Radar

Interview, CISPA

Although the web attack technique DOM Clobbering has been known since 2010, it has received far too little attention.

2022-12-14
Client-side CSRF

It's All About Who's Asking?

Interview, CISPA

While most security researchers think of CSRF as a server-side problem, Client-Side CSRF also exists.

2021-08-27
SameSite Cookies

Are We on the Same Site?

Interview, CISPA

This is a wider card with supporting text below as a natural lead-in to additional content. This content is a little bit longer.

2022-09-09
Under the radar

In the Same Site We Trust

Podcast, ITSP Magazine

Soheil's talk on Request hijacking vulnerabilities to appear at OWASP Global AppSec 2024 in Lisbon.

2024-06-19

title

subtitle

This is a wider card with supporting text below as a natural lead-in to additional content. This content is a little bit longer.

9 mins

title

subtitle

This is a wider card with supporting text below as a natural lead-in to additional content. This content is a little bit longer.

9 mins

title

subtitle

This is a wider card with supporting text below as a natural lead-in to additional content. This content is a little bit longer.

9 mins

title

subtitle

This is a wider card with supporting text below as a natural lead-in to additional content. This content is a little bit longer.

9 mins

title

subtitle

This is a wider card with supporting text below as a natural lead-in to additional content. This content is a little bit longer.

9 mins

title

subtitle

This is a wider card with supporting text below as a natural lead-in to additional content. This content is a little bit longer.

9 mins
Loaded!

Github

See the code and raw content.

View