• The day I trolled the entire internet: accidental research project CVE-2020-1350 https://blog.zsec.uk/cve-2020-1350-research/ 17 comments 15/7/2020

• Locking Down SSH - The Right Way https://blog.zsec.uk/locking-down-ssh-the-right-way/ 27 comments 15/10/2021 linux
• Locking Down SSH - The Right Way https://blog.zsec.uk/locking-down-ssh-the-right-way/ 9 comments 15/10/2021 linuxadmin
• Locking Down SSH - The Right Way https://blog.zsec.uk/locking-down-ssh-the-right-way/ 2 comments 22/5/2021 netsec
• ZeroLogon(CVE-2020-1472) - Attacking & Defending https://blog.zsec.uk/zerologon-attacking-defending/ 21 comments 24/9/2020 netsec
• Introduction to Red Teaming https://blog.zsec.uk/redteam-intro 4 comments 28/9/2019 netsec
• Security Awareness For Everyone https://blog.zsec.uk/zth-ch2/ 3 comments 28/7/2018 technology
• XXE - Things Are Getting Out of Band https://blog.zsec.uk/out-of-band-xxe-2/ 3 comments 12/12/2017 netsec
• Chaining Web Bugs to get RCE https://blog.zsec.uk/rce-chain/ 13 comments 18/11/2017 netsec
• My First CloudFront Sub-Domain Hijack https://blog.zsec.uk/subdomainhijack 4 comments 10/10/2017 netsec
• Hunting in the Dark - Blind XXE https://blog.zsec.uk/blind-xxe-learning/ 3 comments 7/7/2017 netsec
• Web Application Testing Methodologies - Broken Down http://blog.zsec.uk/ltr101-method-to-madness/ 8 comments 8/1/2017 netsec
• CSV Injection Mitigations Revisited https://blog.zsec.uk/csv-dangers-mitigations/ 6 comments 22/7/2016 netsec
• CSV Injection on Pr0nhub https://blog.zsec.uk/csv-hub/ 2 comments 20/7/2016 netsec
• Pwning Pornhub https://blog.zsec.uk/pwning-pornhub/ 13 comments 7/6/2016 netsec