This post contains a chain of vulnerabilities I responsibly disclosed to Riot Games in November of 2016. I’m publicly disclosing it now as the first post in a series of interesting and/or technically complex vulnerability reports/findings I’ve made over the years. The issue has long since been resolved, so long…

linkedin/jaqen jaqen - Jaqen - Simple DNS rebindinggithub.com

Here’s the slides and exploits from the DEF CON 24 talk in Las Vegas, NV. Video to follow in a few weeks. Slides v1 drive.google.com Update on the slides, these issues have all been resolved, the slides were not updated before upload to the DEF CON server bored-engineer/ps-exploits ps-exploitsgithub.com bored-engineer/ps-splunk ps-splunk - Splunk perfSONAR toolsgithub.com

I decided to relaunch my blog with my recent domain name change. It’s unlikely I will migrate the old content, but look forward to my incoherent ramblings about security bugs and the state of the industry in the future.