Hacker News
- On journeys (2015) https://lcamtuf.blogspot.com/2015/03/on-journeys.html 11 comments
- Progressing from Tech to Leadership https://lcamtuf.blogspot.com/2018/02/on-leadership.html 33 comments
- Pulling JPEGs out of thin air (2014) https://lcamtuf.blogspot.com/2014/11/pulling-jpegs-out-of-thin-air.html 40 comments
- CSS mix-blend-mode is bad for your browsing history https://lcamtuf.blogspot.com/2016/08/css-mix-blend-mode-is-bad-for-keeping.html 40 comments
- Automatically inferring file syntax with afl-analyze https://lcamtuf.blogspot.com/2016/02/say-hello-to-afl-analyze.html 3 comments
- Finding bugs in SQLite, the easy way http://lcamtuf.blogspot.com/2015/04/finding-bugs-in-sqlite-easy-way.html 3 comments
- Understanding the process of finding serious vulnerabilities http://lcamtuf.blogspot.com/2015/08/understanding-process-of-finding.html 4 comments
- On Journeys http://lcamtuf.blogspot.com/2015/03/on-journeys.html 17 comments
- Don't run 'strings' on untrusted files http://lcamtuf.blogspot.com/2014/10/psa-dont-run-strings-on-untrusted-files.html 214 comments
- Some harmless, old-fashioned fun with CSS http://lcamtuf.blogspot.com/2013/05/some-harmless-old-fashioned-fun-with-css.html 32 comments
- Announcing cross_fuzz, a potential 0-day in circulation, and more http://lcamtuf.blogspot.com/2011/01/announcing-crossfuzz-potential-0-day-in.html 23 comments
- HTTP cookies, or how not to design protocols http://lcamtuf.blogspot.com/2010/10/http-cookies-or-how-not-to-design.html 48 comments
- Intrusion detection: doing it wrong http://lcamtuf.blogspot.com/2010/06/intrusion-detection-doing-it-wrong.html 2 comments
Lobsters
- Progressing from tech to leadership http://lcamtuf.blogspot.com/2018/02/on-leadership.html 2 comments practices
- The deal with Bitcoin http://lcamtuf.blogspot.com/2017/12/the-deal-with-bitcoin.html 9 comments finance , historical , merkle-trees
- Finding bugs in SQLite, the easy way http://lcamtuf.blogspot.com/2015/04/finding-bugs-in-sqlite-easy-way.html 2 comments databases , programming
- PSA: don't run 'strings' on untrusted files http://lcamtuf.blogspot.com/2014/10/psa-dont-run-strings-on-untrusted-files.html 3 comments security , unix
- Bash bug: the other two RCEs, or how we chipped away at the original fix (CVE-2014-6277 and '78) http://lcamtuf.blogspot.com/2014/10/bash-bug-how-we-finally-cracked.html 4 comments security
- Bash bug: so, like, apply the unofficial patch now (CVE-2014-6277) http://lcamtuf.blogspot.com/2014/09/bash-bug-apply-unofficial-patch-now.html 3 comments linux , security
- PSA: don't run 'strings' on untrusted files (CVE-2014-8485) https://lcamtuf.blogspot.com/2014/10/psa-dont-run-strings-on-untrusted-files.html 122 comments programming
- So you want to work in Security. https://lcamtuf.blogspot.com/2016/08/so-you-want-to-work-in-security-but-are.html?m=1 3 comments netsec
- CSS mix-blend-mode is bad for your browsing history https://lcamtuf.blogspot.com/2016/08/css-mix-blend-mode-is-bad-for-keeping.html 19 comments webdev
- CSS mix-blend-mode is bad for your browsing history https://lcamtuf.blogspot.com/2016/08/css-mix-blend-mode-is-bad-for-keeping.html 5 comments programming
- CSS mix-blend-mode is bad for your browsing history https://lcamtuf.blogspot.com/2016/08/css-mix-blend-mode-is-bad-for-keeping.html 9 comments netsec
- Finding bugs in SQLite, the easy way https://lcamtuf.blogspot.com/2015/04/finding-bugs-in-sqlite-easy-way.html 25 comments programming
- Finding bugs in SQLite, the easy way (afl-fuzz @lcamtuf) http://lcamtuf.blogspot.com.ar/2015/04/finding-bugs-in-sqlite-easy-way.html 6 comments programming
- lcamtuf's blog: Looking back at three months of afl-fuzz http://lcamtuf.blogspot.com/2015/01/looking-back-at-three-months-of-afl-fuzz.html 10 comments netsec
- Pulling JPEGs out of thin air http://lcamtuf.blogspot.com/2014/11/pulling-jpegs-out-of-thin-air.html 5 comments netsec
- Pulling JPEGs out of thin air http://lcamtuf.blogspot.com/2014/11/pulling-jpegs-out-of-thin-air.html 125 comments programming
- Don't run 'strings' on untrusted files http://lcamtuf.blogspot.com/2014/10/psa-dont-run-strings-on-untrusted-files.html 66 comments netsec
- lcamtuf's blog: Bash bug: the other two RCEs, or how we chipped away at the original fix (CVE-2014-6277 and '78) http://lcamtuf.blogspot.com/2014/10/bash-bug-how-we-finally-cracked.html 7 comments netsec
- lcamtuf's blog: A bit more about american fuzzy lop http://lcamtuf.blogspot.com/2014/08/a-bit-more-about-american-fuzzy-lop.html 4 comments netsec
- Messing around with <a download> http://lcamtuf.blogspot.com.es/2014/03/messing-around-with-download.html 6 comments netsec
- American Fuzzy Lop (New fuzzer from lcamtuf) http://lcamtuf.blogspot.com/2013/11/american-fuzzy-lop.html 5 comments netsec
- lcamtuf: Yes, you can have fun with downloads http://lcamtuf.blogspot.com/2012/05/yes-you-can-have-fun-with-downloads.html 14 comments netsec
- 'The Tangled Web: A Guide to Securing Modern Web Applications' now available http://lcamtuf.blogspot.com/2011/11/tangled-web-is-out.html 4 comments netsec
- So you want to write a security book? http://lcamtuf.blogspot.com/2011/08/so-you-want-to-write-security-book.html 4 comments netsec
- Pwn2own Considered (somewhat) Harmful http://lcamtuf.blogspot.com/2011/03/pwn2own-considered-somewhat-harmful.html 11 comments netsec
- Unencrypted public wifi should die (and be reborn) http://lcamtuf.blogspot.com/2010/12/unencrypted-public-wifi-should-die.html 10 comments netsec
- Barbers and security professionals - on licensing. http://lcamtuf.blogspot.com/2010/09/on-barbers-and-security-professionals.html 17 comments netsec