Web developer, security researcher, Senior Pentester at Cure53, sports scholar at University of Warwick, and author of security.txt (RFC 9116). I write about bug bounty, open source, and security—often intertwining the subjects. You can learn more about me and my work here.

Bypassing Server-Side Request Forgery filters by abusing a bug in Ruby's native resolver

#Ruby #bug bounty