My write-up’s, Discoveries & Open Source Contributions

Recent posts

Aug 17, 2020
Firebase Cloud Messaging Service Takeover: A small research that led to 30k$+ in bounties TL;DR A malicous attacker could control the content of push notifications to any application that runs the FCM SDK and has it’s FCM server key exposed & at the same time send these notifications to every single user of the vulnerable application!…