Security Engineer with a dash of software. Originally from Stockholm, now in Berlin. I like to hack things.
My Running
About a year and a half ago I started running. Not sure what drove me to it, but I guess some motivation behind it was as a way to get in better shape/health. I bought myself a cheap pair of running shoes and clothes and started out on a short run.
ReadBypassing Authentication to a Paid Wifi Hotspot
I spent the last week and a few days at my family's summer place on the
ReadMD5 Length Extension Attack
I found this great explanation of a length extension attack [here by Skullsecurity](https://blog.skullsecurity.org/2012/everything-you-need-to-know-about-hash-length-extension-attacks)
ReadMTG: Small AngularJS project
Every now and then me, my brother and some friends get together to play
Readlabel clickjacking and javascriptless csrf
Another niche attack. I happened to notice the interesting behaviour of
ReadWeb Timing Attacks, Continued
Continuing on the subjects of timing attacks, I recently found a small
ReadGetting timing output from CSRF exploits
I've been playing around with the idea of timing attacks lately. The way
ReadQR Codes as Password Storage?
I played around yesterday with the idea of using QR-codes as an offline password storage. This way I don't have to rely on a database of passwords stored on my computer or in the cloud. I shudder at the thought of storing passwords in the cloud, encrypted or not. Instead my idea is to have printed QR codes in a binder, encrypted using a master password. To clarify, the content inside the QR code will be encrypted.
Read