-
GXPN: SANS SEC660 Course Writeup Jun 17, 2024
-
New Section: PoC Week Feb 11, 2024
-
CVE-2023-46604: ActiveMQ Critical RCE Nov 26, 2023
-
Virtual WiFi Lab Setup for PEN-210 (OSWP) Aug 20, 2023
-
Covertly Tampering Digitally Signed Documents Aug 8, 2023
-
OSCP: PEN-200 Course & Exam Writeup Jun 1, 2023
-
CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability Mar 19, 2023
-
CVE-2023-22809: Sudo Arbitrary File Write Jan 20, 2023
-
CVE-2022-42889: Text4Shell - Making a Vulnerable Web App Nov 1, 2022
-
Book notes: Ethical Machines Sep 9, 2022
-
tl;dr: Jwt Best Practise Jul 28, 2022
-
tl;dr: Deanonymisation Attacks via Leaky Resources and JavaScript Cache Probing Jul 20, 2022
-
tl;dr: Account Pre-Hijacking May 28, 2022
-
tl;dr: Hunting Evasive Vulnerabilities May 23, 2022
-
Cloud Pentesting Lab Mar 13, 2022
-
Trojan Source Attacks Nov 1, 2021
-
Fuzzing with AFL Oct 10, 2021
-
OWASP 20th Anniversary Celebration Sep 24, 2021
-
Bug Bounty Alerts Sep 2, 2021
-
codice-fuzzcale demo 2 Aug 28, 2021
-
tl;dr: HTTP Request Smuggling Aug 20, 2021
-
tl;dr: Remote File Inclusion Aug 5, 2021
-
codice-fuzzcale demo Aug 1, 2021
-
Go Concurrency Jul 31, 2021
-
CTF Jul 27, 2021