• The software supply chain (11 Oct 2021)
    Hardening the software supply chain is a critical challenge for modern software companies.
  • Vulnerability exploitation (16 Oct 2019)
    The Zip Slip vulnerability is exploited using a specially crafted archive that holds directory traversal filenames. I prepared and exploit and explain how it works.