Entering in Podman containers

Published: Dec 3 2022

Some commands for interacting with the namespaces of Podman containers.

Switching from Docker to Podman

Published: Oct 13 2022

Some notes about using Podman instead of Docker, on Linux. This has been tested on Podman v3.4.7.

Stable Diffusion on an AMD Ryzen 5 5600G

Published: Aug 28 2022

Executing the Stable Diffusion text-to-image model on an AMD Ryzen 5 5600G integrated GPU (iGPU).

Extract the schema from a remote LDAP server

Published: Jul 6 2022

How to extract the schema from a remote LDAP server and use it on a OpenLDAP instance.

Impact of the different Wifi security modes

Published: Jun 7 2022

Comparing the different Wifi/WPA authentication and key distribution methods (PSK, EAP, SEA).

Browser-based attacks on WebDriver implementations

Published: May 5 2022

Some context and analysis about attacks on in WebDriver implementations.

Lack of X.509 TLS certificate validation in OWASP ZAP

Published: Mar 24 2022

Lack of X.509 TLS certificate validation in OWASP ZAP (Zed Attack Proxy) could be used for man-in-the-middle attacks.

DNS rebinding on ReadyMedia/minidlna v1.3.0 and below

Published: Mar 15 2022

A DNS rebinding vulnerability I found in ReadyMedia (formerly MiniDLNA) v1.3.0 and below. This is CVE-2022-26505.

Introduction to TLS v1.3

Published: Feb 26 2022

Some notes about how TLS v1.3 works. This is a follow-up of the previous episode about TLS v1.2. As before, the goal is to have a high-level overview about how the protocol works, what is the role of the different messages and be able to understand (and debug) a network traffic dump.

CSRF and DNS-rebinding to RCE in Selenium Server (Grid)

Published: Feb 7 2022

Vulnerabilities in found on the WebDriver endpoints of Selenium Server (Grid).

Page 1 of 2 | Previous page | Next page | JSON Feed | Atom Feed