PinnedAvi LumelskyinInfoSec Write-upsSandboxing Python dependencies in your codeRunning code from an untrusted source is still an unsolved issue. Especially in dynamic languages like Python and Javascript. I will begin…8 min read·Jul 10, 2022--1--1
PinnedAvi LumelskyinInfoSec Write-upsHow I Discovered Thousands of Open Databases on AWSMy journey on finding and reporting databases with sensitive data about Fortune-500 companies, Hospitals, Crypto platforms, Startups during…10 min read·Jan 23, 2022--11--11
PinnedAvi LumelskyinInfoSec Write-upsIdentify Website Users By Client Port Scanning — Using WebAssembly And GoWebsites tend to scan the open ports of their users, from the browser, to identify new/returning users better. Can ‘localhost’ be abused…9 min read·Jul 25, 2021----
PinnedAvi LumelskyinInfoSec Write-upsFacebook Knows What You Eat: Discover The Entire Data Facebook Collects About You, Step By Step.A story of how I explored https://facebook.com/dyi programmatically.7 min read·Feb 3, 2021--3--3
PinnedAvi LumelskyinInfoSec Write-upsPOC For Google Phishing In 10 Minutes: ɢoogletranslate.comBack in 2016, I ran into a post about someone buying ɢoogle.com. It was used for phishing proposes (notice the first G). Homographic…7 min read·Mar 12, 2020--2--2
Avi LumelskyinInfoSec Write-upsSecure FastAPI with eBPFLeverage eBPF to secure internet-facing APIs: FastAPI, BlackSheep, Flask, Django, aiohttp, Tornado, and more.8 min read·Sep 3, 2023----
Avi LumelskyinInfoSec Write-upsSecure PyTorch Models with eBPFThis article was not generated by GPT10 min read·Jul 23, 2023----
Avi LumelskyinDeci AIInfery — Run Deep Learning Inference with Only 3 Lines of Python CodeImagine having the power of all frameworks at your fingertips with one friendly yet powerful API7 min read·Jul 22, 2021----