Alvaro Muñoz (@pwntester) works as Principal Software Security Researcherwith HP Security Research (HPSR). His research focuses on differentprogramming languages and web application frameworks searching forvulnerabilities or unsafe uses of APIs. Before joining the HPSR team, heworked as an Application Security Consultant helping enterprises to deploytheir application security programs. Muñoz has presented at many Securityconferences including Defcon, RSA, AppSecEU, Protect, DISCCON, etc and holdsseveral infosec certifications, including CISSP, GWAPT and OSCP, and is aproud member of int3pids CTF team. He blogs at http://www.pwntester.com.
A Journey from JNDI/LDAP Manipulation to Remote Code Execution Dream Land