Benson Liu

@bliutech

security engineer @meta // cs @ucla // ctf @pbrucla

New York City, NY

Joined November 2021

624Following

261Followers

Pinned

Benson Liu@bliutech · Jul 14

I recently talked to some students about scaling vulnerability discovery (particularly in the context of developing program analysis tools). 🐛🚀 The following diagram is how I decided to break down the process. 🖌️ What did I get right/miss? 👀

bliutech's tweet image. I recently talked to some students about scaling vulnerability discovery (particularly in the context of developing program analysis tools). 🐛🚀 The following diagram is how I decided to break down the process. 🖌️ What did I get right/miss? 👀

235

Benson Liu Retweeted

Ryan Peterman@ryanlpeterman · Jul 18

Carey Nachenberg was a Chief Scientist at a GoogleX moonshot, a Fellow (senior most eng at Symantec) and a professor at UCLA. I interviewed him about his career story and we discussed: • Story behind his growth to IC10 (VP equivalent) • How high-level IC recruiting works •…

1.0K

Benson Liu@bliutech · Jul 12

Day 2 was equally fun! 👀 All of the novelty challenges were really interesting and blew my mind. 🤯 Wish we had more time to play around with them, it was a blast! ❤️

BBenson Liu@bliutech · Jul 11

Had a lot of fun at the first day of DiceCTF Finals playing with folks from @pbrucla! ⛳️ Thanks to @dicegangctf for being great hosts and the neat challenges! 🥳

336

Benson Liu@bliutech · Jul 11

Had a lot of fun at the first day of DiceCTF Finals playing with folks from @pbrucla! ⛳️ Thanks to @dicegangctf for being great hosts and the neat challenges! 🥳

bliutech's tweet image. Had a lot of fun at the first day of DiceCTF Finals playing with folks from @pbrucla! ⛳️ Thanks to @dicegangctf for being great hosts and the neat challenges! 🥳

976

Benson Liu Retweeted

Masato Kinugawa@kinugawamasato · Jul 10

bugzilla.mozilla.org/show_bug.cgi?i… This is a big change for DOM Clobberers. Firefox Nightly no longer allows native document properties to be overwritten by elements with a name attr, e.g.: <img src=a name=currentScript> <script> alert(document.currentScript)// HTMLScriptElement </script>

155

13.0K

Benson Liu Retweeted

slonser@slonser_ · May 5

Today I used a technique that’s probably not widely known in the community. In what cases could code like this lead to a vulnerability? ->

178

1.0K

847

253.0K

Benson Liu Retweeted

Psi Beta Rho@pbrucla · Apr 22

Psi Beta Rho won b01lers CTF 2025 this weekend! 🎉🥳 Thank you to the @b01lers team for hosting, and all our members for participating❣️

372

Benson Liu@bliutech · Apr 21

Got #1 at b01lers CTF with @pbrucla this past weekend! 🏆⛳️ This is the first time our team has gotten first (we've been close a couple of times 🫠) so was really excited about this result! 🥳 Thanks to @b01lers for the cool challenges! ❤️

bliutech's tweet image. Got #1 at b01lers CTF with @pbrucla this past weekend! 🏆⛳️ This is the first time our team has gotten first (we've been close a couple of times 🫠) so was really excited about this result! 🥳

Thanks to @b01lers for the cool challenges! ❤️

1.0K

Benson Liu@bliutech · Apr 16

🤯

sslonser@slonser_ · Apr 15

Therefore, we can store the value of any attribute in a CSS custom property. However, we can't use the value of a pseudo-attribute in url(). And this is where image-set comes to the rescue — it allows us to use properties as arguments. developer.mozilla.org/en-US/docs/Web…

193

Benson Liu Retweeted

Intent To Ship@intenttoship · Apr 7

Blink: Intent to Deprecate and Remove: Remove auto-detection of ISO-2022-JP charset in HTML bit.ly/3FUL2Je

33.0K

Benson Liu@bliutech · Apr 3

This year's LA CTF (hosted by @pbrucla) got featured by @UCLAengineering! 👀 Really awesome to look back and see how much it has grown! 🥳⛳️ samueli.ucla.edu/ucla-hosts-hyb…

bliutech's tweet card. In a crowded lecture hall at the UCLA Samueli School of Engineering, Khushi Patel takes meticulous notes, trying to balance her rigorous civil and environmental

286

Benson Liu@bliutech · Mar 30

🎲@dicegangctf + ⛳️@pbrucla 🥳

226

Benson Liu Retweeted

Disconnect3d@disconnect3d_pl · Mar 3

I have written a blog post about null pointers on Linux: disconnect3d.pl/2025/03/03/whe…

147

12.0K

Benson Liu@bliutech · Feb 14

Goodbye to a cool XS-leak! 👋

IIntent To Ship@intenttoship · Feb 14

Blink: Intent to Ship: Partitioning :visited links history bit.ly/3EBPTP7

341

Benson Liu Retweeted

James Kettle@albinowax · Jan 8

Nominations are now open for the Top 10 Web Hacking Techniques of 2024! Browse the contestants and submit your own here: portswigger.net/research/top-t…

286

109

40.0K

Benson Liu Retweeted

Critical Thinking - Bug Bounty Podcast@ctbbpodcast · Jan 3

The moments when I'm most proud of CTBB Podcast are the moments when we're discussing original, HQ research on the pod. So, that's why we're starting the Critical Research Lab with this tremendously talented group of researchers:

274

45.0K