Malerisch.net - Homepage
Defending against application level DoS attacks - presentation (pdf) - July 2010
Cross Context Scripting with Firefox - white paper (pdf) - April 2010
Exploiting Cross Context Scripting vulnerabilities in Firefox - addendum (pdf) - April 2010
multiple adobe products - XML external entity and xml injection - advisory (html) - February 2010
SecurityByte & OWASP AppSec Asia 2009 - video interview (video) - November 2009
Update Scanner chrome privileged code injection - advisory (html) - August 2009
CoolPreviews chrome privileged code injection - advisory (html) - August 2009
exploiting firefox extensions - interview (mp3) - August 2009
defcon 17, 2009 - abusing firefox extensions - presentation (pdf) - August 2009
eusecwest 2009 - exploiting firefox extensions - presentation (pdf) - May 2009
google analytics - stored cross site scripting - advisory (html) - December 2008
opera stored cross site scripting - advisory (html) - October 2008
browser security - presentation (power point) - September 2008
negative seo: exposed - Kiwicon 2008 talk - September 2008
black energy 1.8 web-based botnet package analysis- presentation (power point) - May 2008
web spam techniques- article/presentation (html) (ppt) - Apr 2008
sugarcrm local file disclosure vulnerability- advisory (html) - Apr 2008
IE content type txt - observation (html) - Apr 2008
Negative SEO - interview (mp3) - Apr 2008
Negative SEO - citation (html) - Apr 2008
Xpath Injection - presentation (power point) - Feb 2008
Ajax Security - presentation (power point) - Dec 2007
New vectors of phishing - article (html) - Feb 2007
DotNetNuke vulnerability - advisory (html) - Aug 2006The inte