miguel llamazares
Hacking manager by day, bug hunter by night. 馃
If you are oddly enough interested, here鈥檚 more about me.
- 2026 路 05 my experience passing the osep cert
- 2026 路 04 kali on qemu on debian: a speedrun setup
- 2026 路 04 bypassing waf rate limiting to prove blind sqli
- 2026 路 03 fine-tuning incentives to fight bug bounty ai slop
- 2026 路 03 escalating a preauth sqli to rce
- 2026 路 03 humiliating iis servers for fun and jail time
- 2026 路 02 how to not be an llm kiddie
- 2025 路 12 neural nets in cobol & other creative ways to k*ll yourself
- 2025 路 12 react2shell or prototype pollution going brrr
- 2025 路 12 my experience passing the oswe cert
- 2025 路 11 hello world
- 2025 路 04 using node graphs for subdomain relationship mapping
- 2024 路 12 exfiltrating a db via blind sqli using python
- 2024 路 11 nuxt misconfig exposed +6,700 user records
- 2024 路 10 making owasp asvs actually usable
- 2024 路 08 don't blindly trust public exploits
- 2024 路 07 triggering xss in hidden inputs
- 2024 路 03 recon harder or how I found a hidden blind sqli