https://harrisonm.com/rss.xmlHarrison's projects, research, vulnerability writeups, and proof of concepts. I'd say 'and so much more' but that's probably about ithttp://www.rssboard.org/rss-specificationpython-feedgenhttps://harrisonm.com/dp.pnghttps://harrisonm.com/rss.xmlenMon, 16 Mar 2026 04:14:02 +0000https://harrisonm.com/blog/trust-me-broUntangling syshooks and spoofing call stacks to dodge EDR with the Certified Red Team Lead certificationhttps://harrisonm.com/blog/trust-me-broMon, 16 Mar 2026 00:00:00 +0000https://harrisonm.com/blog/rooting-kids-smartwatchSurely GPS devices strapped to children are secure? Only one way to find out!https://harrisonm.com/blog/rooting-kids-smartwatchTue, 10 Feb 2026 00:00:00 +0000https://harrisonm.com/blog/making-frogs-purr3x mini course reviews including NVIDIA's "Exploring Adversarial Machine Learning" to misclassify frogs as catshttps://harrisonm.com/blog/making-frogs-purrTue, 01 Jul 2025 00:00:00 +0000https://github.com/Harrison-Mitchell/ConquerEarn money, claim territory, pat dogs. A deployable youth group gamehttps://github.com/Harrison-Mitchell/ConquerSat, 08 Mar 2025 00:00:00 +0000https://harrisonm.com/blog/mining-firefox-extensionsSifting every Firefox extension for malware and other interesting nuggets like a leaked French business databasehttps://harrisonm.com/blog/mining-firefox-extensionsMon, 20 Jan 2025 00:00:00 +0000https://cybercx.com.au/blog/insights-from-100-purple-teamsReflecting on five key common mistakes unearthed through 100 purple team engagements in Oceaniahttps://cybercx.com.au/blog/insights-from-100-purple-teamsFri, 20 Sep 2024 00:00:00 +0000https://harrisonm.com/blog/surveillance-down-underReviewing recent Australian legislative changes pertaining to warrantless surveillancehttps://harrisonm.com/blog/surveillance-down-underWed, 22 May 2024 00:00:00 +0000https://cybercx.com.au/blog/cybercx-purple-teaming-toolIntroducing a new open-source tool for mastering the art of purple teaminghttps://cybercx.com.au/blog/cybercx-purple-teaming-toolMon, 09 Oct 2023 00:00:00 +0000https://cybercx.com.au/blog/purple-team-the-journey-continuesWhy Purple Team engagements are the way of the futurehttps://cybercx.com.au/blog/purple-team-the-journey-continuesMon, 09 Oct 2023 00:00:00 +0000https://harrisonm.com/blog/purpleopsFree open-source web app for planning, executing and reporting Purple Team engagementshttps://harrisonm.com/blog/purpleopsTue, 15 Aug 2023 00:00:00 +0000https://cybercx.com.au/blog/m365-multi-factor-authenticationBypassing M365 MFA policies by abusing common blindspotshttps://cybercx.com.au/blog/m365-multi-factor-authenticationTue, 30 May 2023 00:00:00 +0000https://art.harrisonm.comInstantly search known TTP and associated commands for use in red (or purple!) teamshttps://art.harrisonm.comWed, 01 Mar 2023 00:00:00 +0000https://harrisonm.com/blog/school-zone-roads(Google|Apple) Maps let you easily search for places, but any complex queries and correlations were out of the question, until I met Overpass Turbo + OpenStreetMaphttps://harrisonm.com/blog/school-zone-roadsSun, 19 Feb 2023 00:00:00 +0000https://harrisonm.com/blog/chrome-filesystem-vulnerabilityProviding websites direct access to the filesystem bypasses many browser sandbox and trust boundaries, surely it's implemented securely... right...?https://harrisonm.com/blog/chrome-filesystem-vulnerabilityTue, 14 Feb 2023 00:00:00 +0000https://cybercx.com.au/blog/leaking-data-from-dnssecHow the NSEC and NSEC3 DNSSEC records can be abused by attackers to identify valid DNS entrieshttps://cybercx.com.au/blog/leaking-data-from-dnssecFri, 03 Feb 2023 00:00:00 +0000https://harrisonm.com/whitepaper/nsec3-prevalence-and-recoverability.pdfHow effective is NSEC3 in reducing information disclosure?https://harrisonm.com/whitepaper/nsec3-prevalence-and-recoverability.pdfSat, 01 Oct 2022 00:00:00 +0000https://harrisonm.com/blog/nsec-walkingUsing a "security feature" of DNSSEC signed zones to replicate traditional AXFR DNS zone transferring thanks to NSEC and NSEC3 walkinghttps://harrisonm.com/blog/nsec-walkingSat, 01 Oct 2022 00:00:00 +0000https://harrisonm.com/blog/nsw-digital-licenceHow controls both physical and digital cannot stop spoofed licences, only training can; and trust in the digital agehttps://harrisonm.com/blog/nsw-digital-licenceSun, 01 May 2022 00:00:00 +0000https://harrisonm.com/blog/qoiMy investigation into, and implementation of QOI - a nifty little lossless image codec comparable to PNG in size, but superior in speedhttps://harrisonm.com/blog/qoiFri, 01 Apr 2022 00:00:00 +0000https://harrisonm.com/blog/spoofing-au-government-emailsHow an identified email misconfiguration allowed spoofing of emails from a federal Australian Government departmenthttps://harrisonm.com/blog/spoofing-au-government-emailsTue, 01 Feb 2022 00:00:00 +0000https://harrisonm.com/blog/email-securityWhat percentage of Australian businesses are protected from easily-executed email spoofing attacks that cost firms over $81 million annually? Let's investigate...https://harrisonm.com/blog/email-securitySat, 01 Jan 2022 00:00:00 +0000https://github.com/Harrison-Mitchell/ArchyA hierarchical wiki software themed around Windows 95. Edit and renders raw markdown, but provides quality of life features such as pasting images inlinehttps://github.com/Harrison-Mitchell/ArchySat, 01 Jan 2022 00:00:00 +0000https://harrisonm.com/blog/clipboardClipboards are more than a text buffer, they're almost full databases. Why not peel back the layers of the clipboard in this post?https://harrisonm.com/blog/clipboardFri, 01 Oct 2021 00:00:00 +0000https://harrisonm.com/blog/wwwWebsite with "www." are needlessly making a big mistakehttps://harrisonm.com/blog/wwwMon, 01 Mar 2021 00:00:00 +0000https://github.com/Harrison-Mitchell/Video-AlphabetizerTake a video, and put it in alphabetical order; be it a Taylor Swift song, or the entire Star Wars franchisehttps://github.com/Harrison-Mitchell/Video-AlphabetizerFri, 01 Jan 2021 00:00:00 +0000https://github.com/Harrison-Mitchell/ObscureTubeMakes a montage consisting of 1.5s clips from youtube based on the provided topic. However, the videos are only included if they were released within the last 24 hours and have less than 50 views...https://github.com/Harrison-Mitchell/ObscureTubeWed, 01 Jul 2020 00:00:00 +0000https://github.com/Harrison-Mitchell/Bucket-SiftGenerates metadata about public S3 bucket files without needing S3 command line tools or credentials. Useful for bug bounties!https://github.com/Harrison-Mitchell/Bucket-SiftWed, 01 Apr 2020 00:00:00 +0000https://harrisonm.com/blog/passwhatHow it came to be that Facebook chose to make your password 94x weaker than it need be. Also has a recipe for hash browns four ways!https://harrisonm.com/blog/passwhatWed, 01 Jan 2020 00:00:00 +0000https://harrisonm.com/blog/face-averagingThe how and why generating the average face of a nation's population is harder than it soundshttps://harrisonm.com/blog/face-averagingSun, 01 Dec 2019 00:00:00 +0000https://github.com/Harrison-Mitchell/Faster-LecturesUsing a conglomerate of cutting edge technology, trim down the length of time university lectures take to digest. Reach improvements of anywhere between 10-15xhttps://github.com/Harrison-Mitchell/Faster-LecturesSun, 01 Sep 2019 00:00:00 +0000https://github.com/Harrison-Mitchell/Link-Manipulation-PhishingTricks browsers and users to get them to click on a misleading link. Even the cautious aren't protected...https://github.com/Harrison-Mitchell/Link-Manipulation-PhishingSun, 01 Sep 2019 00:00:00 +0000https://harrisonm.com/blog/usbThe fundamentals of the USB interface, and the support for toastershttps://harrisonm.com/blog/usbMon, 01 Jul 2019 00:00:00 +0000https://harrisonm.com/blog/bluetoothHow bouncing around like crazy makes your audio cleanerhttps://harrisonm.com/blog/bluetoothMon, 01 Jul 2019 00:00:00 +0000https://github.com/Harrison-Mitchell/Digitize-Printed-PhotosDo you have photos that you only have printed and not saved in digital form? This tool helps digitize your physical library into a digital one to preserve your memories foreverhttps://github.com/Harrison-Mitchell/Digitize-Printed-PhotosMon, 01 Jul 2019 00:00:00 +0000https://harrisonm.com/blog/encryptionThe basis of the internet and why it's no excuse to check your banking information on a public network, even if it's saltyhttps://harrisonm.com/blog/encryptionMon, 01 Jul 2019 00:00:00 +0000https://harrisonm.com/blog/cryptoThe future of currency, contracts and trust, or at least as it's viewed from 2019https://harrisonm.com/blog/cryptoMon, 01 Jul 2019 00:00:00 +0000https://github.com/Harrison-Mitchell/str-img-Converts an image into a line of text that, when opened looks like a corrupted file, unless you know how to decode ithttps://github.com/Harrison-Mitchell/str-img-Sat, 01 Jun 2019 00:00:00 +0000https://github.com/Harrison-Mitchell/Visible-Hidden-MessagesEncodes messages in plain sight. Store secret data in messages that you send to friendshttps://github.com/Harrison-Mitchell/Visible-Hidden-MessagesWed, 01 May 2019 00:00:00 +0000https://github.com/Harrison-Mitchell/Top-Ten-NSW-Baby-Names-By-YearShows the shifting leaderboard of the ten most popular baby names in NSW by year from the 1950s-https://github.com/Harrison-Mitchell/Top-Ten-NSW-Baby-Names-By-YearWed, 01 May 2019 00:00:00 +0000https://github.com/Harrison-Mitchell/Extract-Lecture-SlidesTurns a recorded lecture into a PDF with slides shown in the video. Useful for when lecture slides aren't released alongside the videohttps://github.com/Harrison-Mitchell/Extract-Lecture-SlidesMon, 01 Apr 2019 00:00:00 +0000https://github.com/Harrison-Mitchell/Monte-Carlo-PiEstimates pi based off calculating the difference between random raindrops landing on a square and circle with an equal diameterhttps://github.com/Harrison-Mitchell/Monte-Carlo-PiMon, 01 Oct 2018 00:00:00 +0000https://github.com/Harrison-Mitchell/Traffic-Camera-TimelapseCreate a timelapse of all NSW traffic cameras provided from the RMS with views ranging from Pacific Highway to the Sydney Harbour Bridge, an easy way to see Sydney's real-time congestion at a glancehttps://github.com/Harrison-Mitchell/Traffic-Camera-TimelapseSat, 01 Sep 2018 00:00:00 +0000https://github.com/Harrison-Mitchell/Speed-Camera-GeocodingPlots all NSW speed cameras on a map by deobfuscating English descriptions of speed camera locationshttps://github.com/Harrison-Mitchell/Speed-Camera-GeocodingSun, 01 Apr 2018 00:00:00 +0000https://github.com/Harrison-Mitchell/Daily-Sydney-TemperatureA graphical representation of every single recorded daily temperature of Sydney since 1860https://github.com/Harrison-Mitchell/Daily-Sydney-TemperatureFri, 01 Dec 2017 00:00:00 +0000https://github.com/Harrison-Mitchell/Video-Object-RecognitionUsing YOLO9000, classify objects in a video for use with computers that aren't compatible with CUDA by processing individual frames rather than a single video filehttps://github.com/Harrison-Mitchell/Video-Object-RecognitionSun, 01 Oct 2017 00:00:00 +0000https://github.com/Harrison-Mitchell/Sydney-TrafficDisplays the state of Sydney's traffic with a grid of public NSW traffic CCTV camerashttps://github.com/Harrison-Mitchell/Sydney-TrafficThu, 01 Jun 2017 00:00:00 +0000https://github.com/Harrison-Mitchell/Sydney-At-A-GlanceSee every public transport vehicle in NSW moving live around a map with real time information on occupancy, traffic, whether the service caters for the disabled, what the next stop is etc...https://github.com/Harrison-Mitchell/Sydney-At-A-GlanceMon, 01 May 2017 00:00:00 +0000https://github.com/Harrison-Mitchell/Framed-MoviesGet the average colour of every frame in a video and create a lovely colour timelinehttps://github.com/Harrison-Mitchell/Framed-MoviesTue, 01 Nov 2016 00:00:00 +0000