Mathias Karlsson
Bug bounty hunter and security researcher. Creator of Archive Alchemist, a tool for testing archive-based vulnerabilities.
Best podcasts with Mathias Karlsson
Ranked by the Snipd community
10 snips
Jul 24, 2025 • 1h 50min
Episode 132: Archive Testing Methodology with Mathias Karlsson
Mathias Karlsson, a seasoned bug bounty hunter and the mind behind Archive Alchemist, joins in to discuss the complexities of archive-based vulnerabilities. He dives into the significance of Unicode paths, revealing how they can lead to security flaws. The conversation highlights automation in testing methodologies and the risks associated with symbolic link and path traversal attacks. Karlsson also shares insights on file handling intricacies, showcasing techniques for enhancing security assessments that are crucial for developers and researchers alike.
Dec 21, 2023 • 2h 25min
Episode 50: Mathias "Fall in a well" Karlsson - Bug Bounty Prophet
Hacking master Mathias Karlsson discusses burnout, collaboration, and specialization in bug bounty. They dive into technical details of MXSS and XSLT, character encoding, and predict the future of bug bounty. They also talk about the importance of finding insecure defaults, the beauty of simple code, and the benefits of sharing research. The evolution of bug bounty programs and the rise of bug bounty budgets are explored. Techniques for bypassing Web Application Firewalls and the importance of persistence in bug bounty programs are discussed.
