darkport

Hello! I'm Paul Price.

I make stuff, break stuff, and protect stuff from getting hacked.

Find me on Twitter and GitHub.

From the blog

1 Nov '18 Effortless Password Audits
Why you should be auditing your users passwords.
13 Feb '18 Online Stalking: London, Paris, New York
Abusing seemingly innocent data.
4 Apr '16 Domino's: Pizza and Payments
pizza.free = true
30 Jan '15 Owning Philips In.Sight IP Cameras
Poppin' root shells on Internet-enabled cameras.
29 Jan '15 Yoics: account takeover vulnerability
Full account takeover in an IoT cloud provider used by numerous manufacturers such as Cisco and Phillips.

sshgit
Find GitHub secrets in real time.
Passlo
Helps businesses protect against the number one cause of data breaches.
Bucket Stream
Find interesting Amazon S3 Buckets by watching certificate transparency logs.
cracke-dit
Easier Active Directory password audits!
The Endorser
OSINT tool to pluck out LinkedIn relationships via endorsements.
Needl
Generates fake genuine-looking Internet traffic.

5 Apr '16 Motherboard (VICE) - Bug in Domino's Pizza App Allowed Hackers to Get Free Pizza for Life
6 Jan '15 The Guardian, BBC - Personal details of all MoonPig customers exposed by security bug