Originally released in 2013, Electron is a framework for creating native desktop products with JavaScript, HTML, and CSS. Since then, companies such as Microsoft and Slack have built Electron into their development process. Love them or hate them, cross-platform Electron apps are here to stay — they're everywhere. But, there's a caveat.…
Yasin Soliman
Late in the afternoon of November 13th did HackerOne announce their next live hacking event: H1-212, set to take place in New York City this December. Having never attended an in-person event, nor taken part in any challenges besides Google's annual qualifier, I felt this was an excellent opportunity to apply myself to the H1-212 CTF.…
Yasin Soliman
It's been a few months since my last personal blogpost, which chronicled two reflected cross-site scripting vulnerabilities in Google Play. This time, we'll explore two stored cross-site scripting bugs since remediated by Google: the first in App Maker for G Suite organisations, and the second in the brand new Colaboratory platform.…
Yasin Soliman