-
WAF Bypassing with Unicode Compatibility 19 Feb 2020
-
Detecting valid tags/events on XSS exploitation. 25 Jan 2020
-
Exploiting XSS with 20 characters limitation 30 Nov 2019
-
HSTS vs SSL Stripping attacks. 11 Nov 2019
-
Common Cross-Site Scripting scenarios. 3 Bug Bounty cases 10 Oct 2019
-
Binary Privilege Escalation in x64. Defeating ASLR with Leaks 15 Jun 2019
-
Frida on non-rooted Android devices 18 May 2019
-
Second Order SQLI: Automating with sqlmap 29 Apr 2019
-
Powershell AV Evasion. Running Mimikatz with PowerLine 27 Jan 2019
-
XSS 101 - Solving Google's XSS Challenge 16 Dec 2018
-
Building a botnet with Shodan 02 Dec 2018
-
Process migration in Meterpreter 26 Nov 2018
-
Controlling the domain controller (Part 2) - Multirelaying NTLMv2 tokens to gain authentication. 11 Nov 2018
-
Controlling the domain controller (Part 1) - LLMNR poisoning with Responder.py and cracking NTLMv2 tokens 04 Nov 2018
-
Libssh Authentication Bypass Detailed (CVE-2018-10933) 23 Oct 2018
-
JS-Recon detailed. Analizying the internal network with a XSS 18 Oct 2018
-
Auditing a Payment Processing of a Booking Framework 07 Oct 2018