Interested in web, browser, and wireless security. CS Student @ SZTE. "Full-Time" Bug Bounty on @GoogleVRP.

Hungary
Joined July 2014
I just published a new @GoogleVRP writeup about stealing @YouTube Watch History, Unlisted Videos, Watch later, Liked Videos, and more! 👀 Check it out: bugs.xdavidhu.me/google/2021…
11
116
383
2021 = more writeups! 🎉 Check out my new @GoogleVRP writeup about stealing any private @YouTube video: bugs.xdavidhu.me/google/2021…
27
215
636
This "running-a-websocket-server-on-localhost-for-the-electron-app" thing is becoming a trend nowdays, but I'm not sure if most developers are aware that any website can access it, even though its just ment to be a local (not so secure) API in 99% of the cases.
0
6
21
nmap -p 0-Shanghai
0
0
15
When you open a video and want to pause the music so you press the ⏸️ button on the Touch Bar and it pauses the video!!
1
0
1
GIF
[solution!] You can turn this thing off in Chrome on the "chrome://flags/#hardware-media-key-handling" page:
0
0
3
David Schütz retweeted
GOOGLE DRIVE WE GET IT THE TRASH HAS CHANGED
539
45,735
454,819
Show this thread
Chromium build getting compiled.. @ChromiumDev
1
1
9
511