Gregor Samsa: Exploiting Java’s XML Signature Verification

By Felix Wilhelm, Project Zero Earlier this year, I discovered a surprising attack surface hidden deep inside Java’s standard library: A cus… Read more


25th Anniversary of Java 1.0

On January 23rd, 1996, Sun Microsystems announced the availability of Java 1.0, an object oriented, platform neutral programming language. The fact that it was released as a freely available language and compiler for multiple platforms, coupled with it... (more…)

Read more »