Stepping through security https://breakpoint.purrfect.fr Wed, 11 Feb 2026 12:37:50 +0100 Wed, 11 Feb 2026 12:37:50 +0100 7200 Dueling Nexus is a free Yu-Gi-Oh dueling platform, the security of which leaves to be desired. Here are some vulnerabilities that you should be aware of as a duelist. https://breakpoint.purrfect.fr/article/duelingnexus_audit.html Wed, 11 Feb 2026 12:37:12 +0100 GRR is a French open-source booking management system. This audit revealed many important vulnerabilities that have since been fixed. https://breakpoint.purrfect.fr/article/grr_audit.html Wed, 11 Feb 2026 01:26:24 +0100 An analysis of strange statistical mistakes in a biology paper about a randomized controlled trial studying the effect of probiotics on allergic rhinitis. https://breakpoint.purrfect.fr/article/suspicious_statistics_rct.html Mon, 16 Jun 2025 12:40:36 +0200 Let's study a broken password manager to understand some vulnerabilities specific to storage encryption. https://breakpoint.purrfect.fr/article/vault_password_manager.html Mon, 26 May 2025 23:35:34 +0200 Where we find a novel attack against a very very old authentication protocol with the help of Verifpal. https://breakpoint.purrfect.fr/article/breaking_grandpa.html Mon, 16 Oct 2023 23:50:04 +0200 First installment of the Dusty Files series, we look at the discovery and exploitation of a SSRF in Padlet. https://breakpoint.purrfect.fr/article/df_padlet_ssrf.html Tue, 31 May 2022 22:35:02 +0200 The standard D library provides a random UUID implementation that relies on regular pseudo-number generation and is not cryptographically secure. We show how this can be exploited in practice to predict future UUIDs. https://breakpoint.purrfect.fr/article/cracking_phobos_uuid.html Mon, 24 Aug 2020 10:08:40 +0200 Crypto is a cryptography library for the D programming language. I performed a review of the implementation of RSA that showed many issues. This article discusses these issues in details. https://breakpoint.purrfect.fr/article/review_crypto_d.html Tue, 30 Jun 2020 22:36:38 +0200 Stirling engines are simple, safe and dependable. What if we used them to transform our tea into phone chargers? https://breakpoint.purrfect.fr/article/stirling_mug_top.html Sat, 20 Jun 2020 21:12:22 +0200 Study of a file-based privilege escalation in HPLIP. Writable directories are still a liability! https://breakpoint.purrfect.fr/article/hplip_privesc.html Fri, 6 Dec 2019 18:55:28 +0100 Got a 3 or 4 digit combination lock that you can't open? Not anymore! Here are a few tips and tricks to open almost any combination lock you may find. https://breakpoint.purrfect.fr/article/opening_combination_locks.html Fri, 21 Jun 2019 01:02:12 +0200 My web directory bruteforcing tool is finally feature complete after some years of development and professional use. Here's a short presentation of its goals and usage. https://breakpoint.purrfect.fr/article/dirduster_presentation.html Thu, 20 Jun 2019 20:44:39 +0200 Determining the right size of hash to use to avoid collisions can be tricky, but it's easier than it sounds with the right mental trick. https://breakpoint.purrfect.fr/article/size_hash.html Fri, 1 Mar 2019 16:26:40 +0100 Let's raise Github projects back from the dead to take control of hundreds of Dub, Go and AUR packages! https://breakpoint.purrfect.fr/article/github_account_takeover.html Sat, 9 Jun 2018 22:11:06 +0200 We've lost the habit to perform mental calculations and estimates since working with computers. I'd like to show that it's really not hard and actually very useful, here by estimating the time needed to crack a key. https://breakpoint.purrfect.fr/article/mental_calculations.html Sun, 15 Apr 2018 00:05:27 +0200 Docker is generally presented as a developer tool, but it can be very useful to security professionals too! Let's show how easy to use it can be in that regard. https://breakpoint.purrfect.fr/article/docker_pentesters.html Sat, 24 Feb 2018 11:11:44 +0100 Asked to perform an internal pentest with no clue where to start from? Here's a guideline that you might find useful. https://breakpoint.purrfect.fr/article/internal_penetration_tests.html Sat, 20 Jan 2018 15:27:54 +0100 P0wning a Windows box without Powershell? Easy with VBS! https://breakpoint.purrfect.fr/article/vbs_reverse_shell.html Thu, 11 Jan 2018 20:17:26 +0100 Let's have a glance at a real although very short D program to discuss some of its features. https://breakpoint.purrfect.fr/article/d_sightseeing_crc32.html Thu, 15 Jun 2017 23:38:09 +0200 How to configure SSL/TLS on your server in order to make it secure? Here is the way to do it quick and cleanly. https://breakpoint.purrfect.fr/article/ssl_tls_recommendations.html Thu, 15 Jun 2017 20:07:34 +0200 Julia Evans proposed the simplest database, let's take it down! A case study of simple file manipulations in bash. https://breakpoint.purrfect.fr/article/hacking_simplest_database.html Sun, 11 Jun 2017 22:46:18 +0200 How to use sox for something simple and practical: fixing the noise in a youtube video. https://breakpoint.purrfect.fr/article/fix_video_noise_sox.html Mon, 29 May 2017 20:09:18 +0200 Simple demonstration of how an attacker could tamper with an encrypted message to his benefit without ever decrypting it in the absence of message authentication. https://breakpoint.purrfect.fr/article/demo_bank.html Sun, 2 Apr 2017 11:49:11 +0200 Excel formula injections are common in programs generating XLS files, but often considered harmless. This discusses a new technique that greatly improve the Red Team situation. https://breakpoint.purrfect.fr/article/excel_webservice.html Sat, 1 Apr 2017 00:30:08 +0200 How to identify flawed resource management leading to privilege escalation. Part of the Fast Security Source Code Review series. https://breakpoint.purrfect.fr/article/scr_privesc.html Wed, 22 Mar 2017 01:05:29 +0100 Introduction to the main concepts behind a fast security review. Intended for developers as well as pentesters. https://breakpoint.purrfect.fr/article/source_code_review.html Wed, 22 Mar 2017 00:59:39 +0100 D's unpredictableSeed is sometimes used to compensate for the lack of a CSPRNG in the standard library. But how secure is that really? https://breakpoint.purrfect.fr/article/unpredictableSeed.html Sun, 26 Feb 2017 18:52:38 +0100 "A file was encrypted. You have the encryption software and an encrypted file. Decrypt that file." Detailed writeup using radare2. https://breakpoint.purrfect.fr/article/crypter_writeup.html Sat, 25 Feb 2017 03:16:43 +0100 Improvised code review of the Gource git repository viewer. It is meant as a way to show how one can perform quick and targeted code reviews. https://breakpoint.purrfect.fr/article/exploiting_gource.html Sat, 25 Feb 2017 01:37:33 +0100 What makes an object system tick? What does it mean to be object oriented? What are classes really? https://breakpoint.purrfect.fr/article/object_system.html Sat, 25 Feb 2017 01:37:33 +0100 Une explication détaillée d'exploitation de programme SUID root via une TOCTTOU pour obtenir une élévation de privilège. https://breakpoint.purrfect.fr/article/mail_local_tocttou.html Sat, 25 Feb 2017 00:52:02 +0100 Strace est un outil puissant mais qui peut être difficile à manipuler. Nous voyons donc un cas concret en étudiant le fonctionnement de la commande "who". https://breakpoint.purrfect.fr/article/strace_who.html Sat, 25 Feb 2017 01:37:33 +0100 Quelqu'un sur irc a proposé hier un petit challenge de steganographie. La victime du jour ? Un chiot qui renferme, nous dit-on, des secrets. https://breakpoint.purrfect.fr/article/puppy_writeup.html Sat, 25 Feb 2017 01:52:33 +0100 Ed est un éditeur puissant mais terriblement déconcertant au premier abord. Cet article présente les commandes essentielles et un peu plus pour bien débuter avec l'Éditeur. https://breakpoint.purrfect.fr/article/introduction_ed.html Sat, 25 Feb 2017 01:37:33 +0100 Shell streams are the most powerful feature of bash. Knowing about redirections is a capital step toward an efficient use of command-line. https://breakpoint.purrfect.fr/article/shell_streams_and_redirections.html Sat, 25 Feb 2017 01:37:33 +0100