Antony Garand

Antony Garand @antogarand

About: Security enthusiast, FullStack developer, challenge solver

Joined:

Jun 9, 2018

Antony Garand
articles - 20 total

Antony Garand

#security

Vulnerabilities in Guilded.gg

I recently stumbled upon a Youtube video by No Text To Speech regarding Guilded issues that reminded...

Learn More 4 0Dec 20 '23

Making a simple fuzzer for Tixy

You might have heard about tixy.land, the minimalist javascript playground for creative coding....

Learn More 6 0Dec 31 '20

SVG Metaballs

I find metaballs fascinating: Pure shapes fusing and morphing with each other, making a weird gooey r...

Learn More 21 2Dec 7 '20

Making math animations and videos with code

Making math animations and videos with code

Cover gif by Freya Holmér I feel like animations are the most intuitive way to visualize and und...

Learn More 86 4Apr 30 '20

JavaScript typed arrays: Unexpected overflow

Antony Garand

#javascript

JavaScript typed arrays: Unexpected overflow

An odd behavior from JavaScript typed arrays

Learn More 8 4Feb 12 '19

Hacking Dev 2: Slipping through security

Antony Garand

#xss

#security

Hacking Dev 2: Slipping through security

This is my second post regarding multiple XSS I found on dev.to

Learn More 41 0Feb 5 '19

XSS in Ghost

Story of a reflected XSS in Ghost, the publishing platform. This post covers the technical walkthrough of the vulnerability.

Learn More 71 12Dec 16 '18

Why Facebook's api starts with a for loop

Antony Garand

#javascript

#security

Why Facebook's api starts with a for loop

The curious case of JSON hijacking

Learn More 1140 41Nov 13 '18

What happens when you submit an article?

What happens when you submit an article?

Learn to navigate Dev.to's source code by understanding what happens when performing common actions!

Learn More 107 10Sep 3 '18

Pwned Together: Hacking dev.to

How I found a vulnerability in the application, and how you can too!

Learn More 154 24Aug 31 '18

Antony Garand

#security

#writeup

From data leak to account takeover

How I managed to compromise accounts from an information leak on a web application.

Learn More 63 5Aug 7 '18

SQL: Where spaces may not matter

Here is a vulnerable application which can be exploited thanks to a rather unknown SQL quirk.

Learn More 60 8Jul 28 '18

Spot the malware

Can you find out how malware is injected in this page?

Learn More 41 9Jul 16 '18

PHP: Return true to win - WriteUp (Part 2)

PHP: Return true to win - WriteUp (Part 2)

Returntrue.win is a website containing many challenges where you supply the input of a function which needs to return true. This posts covers the solutions to these challenges.

Learn More 13 1Jun 29 '18

GoogleCTF 2018: Translate WriteUp

WriteUP for the GoogleCTF 2018 challenge Translate

Learn More 18 1Jun 25 '18

PHP: Return true to win - WriteUp (Part 1)

PHP: Return true to win - WriteUp (Part 1)

Returntrue.win is a website containing many challenges where you supply the input of a function which needs to return true. This posts covers the solutions to these challenges.

Learn More 20 8Jun 22 '18