benbnyc
Recent
Reversec Webinar: Going behind the scenes of bug bounty to strengthen enterprise security
A webinar on how bug bounty programs harness crowdsourced security research to uncover vulnerabilities and strengthen organizational resilience. We discuss how to triage, prioritize, and manage findings effectively alongside traditional pentesting.
Reversec Briefing: Bug Bounty behind the scenes
A video of a talk on how bug bounty programs work from researcher submission through triage, reward, retesting, and resolution. Plus, how companies balance them with traditional pentesting and avoid common pitfalls.
Prototype Pollution Primer for Pentesters and Programmers
A hands-on walkthrough of prototype pollution in JavaScript — how attackers corrupt Object.prototype to achieve DOM-based XSS, with exploit demos and mitigations
Password Advice for Everyone
Essential steps to secure your accounts: use unique passwords, enable 2FA, and avoid common password mistakes.
Actionable Password Advice Based on the Probable Wordlists
Why unique passwords matter, what makes them vulnerable to attack, and how to create strong yet memorable ones - based on the Probable Wordlists v2
(RETIRED) WorstPasswords Twitter Bot
A (now retired) automated Twitter bot that tweeted the worst passwords found in the Probable Wordlists V2.