From binary to working Go: reconstructing a malware sample with AI coding agents
30 May 2026

Analyzing internal Go structures in obfuscated binaries
29 May 2026

Experiments modernising old C code
18 May 2026

Synology findhostd: Auditing an Unauthenticated Endpoint Running as Root
15 April 2026

Auditing Ghidra Server Authentication: 63 Findings Across the Auth Stack
09 April 2026

Gmail Inbox Cleanup: Retention Policies, API Limits, and a CLI That Actually Works
03 April 2026

The Long Road to Crypto APIs: From IBM CCA to Crypto-Agility
12 March 2026

Customising GitHub Copilot: instructions, prompts, agents, skills, MCP, and hooks
19 February 2026

Azure Defense in Depth
23 January 2026

Secure Allocation of Memory: A 2025 Update
11 January 2026

Making it easy to implement cryptography in applications: Google Tink
08 January 2026

Side-channel pitfalls in RSA: timing leaks, fault attacks, and the trouble with constant-time code
19 February 2025

Implementing security protocols in a robust manner
06 May 2023

Dear OpenSSL project, you can do better
03 November 2022

CVE-2022-21449: implementing cryptography correct requires attention to details
23 May 2022

The stealth mechanisms of SUNBURST
21 December 2020

Intercepting Android app traffic
05 November 2019

Unwrapping malicious mail attachments
05 July 2019

Security testing flash applications with AMF
06 December 2008

Editing .NET assemblies
11 January 2008

Fast elliptic curve arithmetic in Java
22 February 2006

Secure allocation of memory
27 June 2002