Homepage
Open in app
Sign in
Get started
Paradoxis
Dutch cyber security specialist with a passion for software & penetration testing, currently working at Fox-IT in Delft - Views expressed are my own and do not represent anyone else.
Follow
Following
Writing Sliver C2 Extensions in Rust
Writing Sliver C2 Extensions in Rust
TL;DR
Luke Paris
Jan 20
YAFPC — Unauthenticated Remote Code Execution
YAFPC — Unauthenticated Remote Code Execution
Two separate flaws exist in the YAFPC (Yet Another Free PDF Composer) appliance which allows an attacker to gain remote code execution.
Luke Paris
Jan 14, 2023
StegCracker 2 Released
StegCracker 2 Released
A long time ago, on an awesome pentesting platform far far away, I had a problem. A problem many people that play CTF challenges can…
Luke Paris
Mar 25, 2019
Baking Flask cookies with your secrets
Baking Flask cookies with your secrets
A few weeks back, I and a friend of mine were discussing web frameworks and how he claimed to have made an ‘Impossible to Bypass’ login…
Luke Paris
Jan 26, 2019
Fingerprinting Web Servers with Git
Fingerprinting Web Servers with Git
Before I begin, I’d like to give a little backstory on how I came to building the tool I’m about to show. Recently, I was doing an online…
Luke Paris
May 21, 2018
SHA2017 — A recap of insanity
SHA2017 — A recap of insanity
To summarize the last five days of my life, I can’t think of anything other than “amazingly chaotic”, and I loved every minute of it. If…
Luke Paris
Aug 10, 2017
The PHP module backdoor II — The fallout
The PHP module backdoor II — The fallout
A little over a week ago I published a post to my blog titled ‘Your interpreter isn’t safe anymore — The PHP module rootkit’.
Luke Paris
Jun 23, 2017
Backdooring the PHP interpreter
Backdooring the PHP interpreter
Editor’s note: The following post was written in 2017 at the very start of my career in Cyber Security. I was inspired to make a simple…
Luke Paris
Jun 12, 2017
Git clone — A devil in disguise
Git clone — A devil in disguise
So you or your company make this fresh new website, the code has been reviewed for security vulnerabilities and you’re confident it’s the…
Luke Paris
Feb 22, 2017
One month into Google App Engine
One month into Google App Engine
Quick warning before you continue reading, this post is 100% about my opinions and experiences using Google App Engine. If you don’t enjoy…
Luke Paris
Sep 4, 2016
About Paradoxis
Latest Stories
Archive
About Medium
Terms
Privacy
Teams