Firebase Applications – The Untold Attack Surface

 Date: September 14, 2020

Back in the day when I worked at AppSec Labs(and in my previous job too) I ran into the Firebase technology, which started to become quite popular.

Every time I got a project with this technology, it required some annoying setup to be in-place before starting to plan an attack.

This led me to research more about the topic, finding a hidden attack surface & develop my own tool to test firebase security rules :D

 Tags:  web firebase-security firebase
Related Posts:
Pwning LLaMA.cpp RPC Server
Reverse Engineering a Kernel Driver chall
Hunting bugs in Nginx JavaScript engine (njs)

Previous
⏪ Research Publication: Pwning PHP7 Internals (Zend engine)

Next
Loading an ELF without the execve syscall ⏩