Security

All my security related work.

• Disclosing unauthenticated user endpoint in outdoor activities app
  Mar 30, 2026 · 8 minutes read
• Hacking the hack: Internals of the Dreame FEL rooting method
  Jun 15, 2025 · 14 minutes read
• Onlinezugangsgesetz in action: Disclosing security and privacy issues in NRW
  Oct 15, 2024 · 13 minutes read
• Finding mispriced opcodes with fuzzing
  Jun 17, 2024 · 1 minutes read
• 5 reasons to strive for better disclosure processes
  Apr 15, 2024 · 1 minutes read
• Out of the kernel, into the tokens
  Mar 8, 2024 · 1 minutes read
• LeftoverLocals: Listening to LLM responses through leaked GPU local memory
  Jan 16, 2024 · 1 minutes read
• Billion times emptiness
  Dec 29, 2023 · 1 minutes read
• Keeping the wolves out of wolfSSL
  Jan 12, 2023 · 1 minutes read
• Enable AddressSanitizer in Rust *-sys crate
  Jun 15, 2021 · 5 minutes read
• Inspect Secure Renegotiation using OpenSSL
  Jun 7, 2021 · 3 minutes read
• Building OpenSSL with Determinisic Randomness
  Jun 2, 2021 · 3 minutes read
• Distinction between Fuzzing Approaches for TLS
  Apr 12, 2021 · 6 minutes read
• Dissecting TLS using OpenSSL and Wireshark
  Mar 23, 2021 · 24 minutes read
• Fuzzing Terminology
  Mar 21, 2021 · 7 minutes read
• Keeping a Secret Safe (and not only Secure)
  Jan 5, 2021 · 9 minutes read
• Routing Docker Container over a Specific Host Interface Like a VPN
  Apr 2, 2020 · 8 minutes read
• Data Visualization of Telegram messages (Encrypted Chats)
  Mar 25, 2020 · 4 minutes read
• Armbian: Encrypting the Root Partition
  Jan 21, 2020 · 3 minutes read
• Verifying a Yubikey for genuity using common tools
  Sep 4, 2019 · 6 minutes read
• Using Telegraf and InfluxDB on pfSense with Let’s Encrypt Certificate
  May 3, 2019 · 3 minutes read
• CTF: Fun with Hardware and Software breakpoints in GDB
  Dec 23, 2018 · 4 minutes read