nbpoole
- Karma
- 2,035
- Created
- November 2, 2010 (15y ago)
- Submissions
- 0
Web application security enthusiast. Currently a Security Engineer at Facebook. Formerly a security consultant for Matasano Security. My posts and comments do not reflect the opinions or views of my employer.
Blog: https://nealpoole.com/blog/
Twitter: https://twitter.com/NealPoole
Contact me: https://nealpoole.com/blog/contact/
- Investigating apparent IT breach, Stanford urges users to update passwords (news.stanford.edu)
- A Python Tutorial for Economists (alexmbell.com)
- Google Patents: Missing Data Before 2000? (alexmbell.com)
- How the BEAST was Born (vnhacker.blogspot.com)
- Lessons from Facebook's Security Bug Bounty Program (nealpoole.com)
- Black Hat 2011: "Attacking Client Side JIT Compilers" (matasano.com)
- File uploads allow for cross-site scripting in Wordpress (nealpoole.com)
- Avoiding Arbitrary Code Execution with nginx and php-fastcgi (nealpoole.com)
- Directory Traversal / Local File Inclusion on addons.mozilla.org (nealpoole.com)
- How Does Cross-Site Scripting Become Arbitrary Code Execution? (nealpoole.com)
- Reports from Google’s Vulnerability Reward Program (nealpoole.com)
- Looking for a co-conspirator (stdout.be)
- Using Static Analysis for Ajax Intrusion Detection (cs.brown.edu)
- bit.ly announces API hackathon winners (blog.bit.ly)