I am always on the lookout for new research areas particularly in web, supply-chain, and open-source security. If you have a research proposal and would be interested in inviting me to collaborate, do not hesitate to get in touch via email. I am especially interested in collaborating with academics in the field of cyber security. Please note: I have a priority queue of research proposals and therefore may not be able to respond to every collaboration request.
“CI Knew There Would Be Bugs Here” — Exploring Continuous Integration Services as a Bug Bounty Hunter (2019)
When it comes to bug bounty hunting and finding exciting areas to explore, it is vital to familiarise yourself with the technologies vendors, and companies rely on. One particularly interesting environment that caught my team’s eye was popular integrations used by various open-source projects, primarily as part of their development life cycle. Some continuous-integration services turned out to be extremely rewarding for us as bug bounty hunters.
This publication was was voted among the “Top 10 web hacking techniques of 2019” and received a Pwnie Award nomination at Black Hat 2019.Read more →
An analysis of logic flaws in web-of-trust services (2018)
Web-of-trust services (WOT) such as Keybase, Onename, and Blockstack promise to verify individuals’ identities on the web. Since many applications on the web are not consistent this often leads to unintended behaviour and therefore security vulnerabilities in web-of-trust services. In this piece of research, I explored a series of novel attack vectors against web-of-trust services.Read more →