Blog of Daniel Ruf

Daniel Ruf

Written by Daniel Ruf. You should follow him on Twitter

binary planting and arbitrary file (over)write vulnerabilities in npm, pnpm and yarn

12.12.2019

npm, pnpm and yarn were vulnerable to binary planting and arbitrary file (over)write through the bin field in package.json.

post mortem: hacked WordPress with a cryptominer (2018)

15.06.2019

This is a post mortem report of a hacked WordPress instance with a cryptominer in 2018 which was handled by me.

post mortem: spam attack (2018)

09.06.2019

This is a post mortem report of a contact form spam attack in 2018 which was handled by me.