Denis Makrushin

VolgaCTF 2021: on top of Scoreboard

by Denis Makrushin September 19, 2021

written by Denis Makrushin

First photo from the circle keeps five years of difference: first presentation, hosted in Samara State Aerospace University campus for the audience full of CTF teams with firing eyes, at VolgaCTF – a “ for student, by student” event, organized by group of enthusiasts. 5 years later, VolgaCTF is full of sponsors and partners, hosted in conference halls and streamed worldwide. But still, an independent event, organized by the group of enthusiasts, keeping the same fire in the eyes.

We also keep our eyes shining there: last year our teammates occupied agenda of the event, this year our young Jedis occupied top of the competition scoreboard. Looking forward to next year @volga_ct f!

View this post on Instagram

A post shared by Denis Makrushin (@makrush.in)

September 19, 2021 0 comment

Blog

ZeroNights 2021: Main Stage

by Denis Makrushin August 22, 2021

written by Denis Makrushin

The second year in a row, I’m pleased to host the main stage of @ZeroNights and prepare a soundtrack of the geekiest cybersecurity conference in Russia.

Hey, speakers, this time, if you are not able to provide confident answers after your presentations, you will have to dance! pic.twitter.com/9Ok78cPBbt
— Denis Makrushin (@makrushind) August 19, 2021

August 22, 2021 0 comment

Blog

Bug Hunting Talks: Payment Systems Security

by Denis Makrushin July 25, 2021

written by Denis Makrushin

Payment systems are a tidbit for an attacker, but often it’s non-achievable scope for bug hunters outside the company. Bug bounty programs of financial organizations include resources that are on the surface of the attack, and it’s quite difficult for a researcher to dig deeper into the internal financial processes. So we have to limit ourselves with XSS, SSRF in a web-application of the payment system.

July 25, 2021 0 comment