Session tokens in RWS WorldServer have a low entropy and can be enumerated, leading to unauthorised access to user sessions.

Setting up the environment + Hello […]

Trufflehog is an open-source secret scanning engine that detects sensitive credentials such as passwords and API keys – secrets that are inadvertently exposed by individuals and organizations. Two years ago, Trufflehog v3 was released, a complete rewrite…

TLDR: you can use mitmproxy to modify stuff before it sent to Burp Proxy. Instruction below. Recently we were asked to asses a oldschool Java client server application. After configuring BurpSuite …

Learn how to write your own Burp BCheck noscripts to tap into the web vulnerability scanner to automate your API security testing.

A simple, distributed, zero-configuration WireGuard mesh solution - webmeshproj/webmesh

Celebrate the life of Kevin Mitnick, leave a kind word or memory and get funeral service information care of King David Memorial Chapel & Cemetery.

A simple story when Allah allowed me to successfully achieve P1 through a broken access control issue using an unexpected master ID of “0”.

bypass most PHP filters using only base64

In this post we are going to show how you can (ab)use the new HTML popup functionality in Chrome to exploit XSS in meta tags and hidden inputs. It all started when I noticed the new popover behaviour

BPF is a popular and powerful technology embedded in the Linux kernel and can potentially be used by threat actors as part of their malicious arsenal.

Open-source tool to bypass windows and linux passwords from bootable usb - GitHub - Fadi002/unshackle: Open-source tool to bypass windows and linux passwords from bootable usb

"Infosec Twitter," a vibrant community of security practitioners, known for its insight, inspiration, and entertainment, is coming to an end.

Every week, almost without fail, I come across one thing that confuses, entertains, or most commonly infuriates me. I’ve decided to keep a…

Bypass client-side encryption using custom logic for manual and automation testing

Note: this is the "main" blogpost for the talk I am giving at BSides Basingstoke 2023. It spawned a dozen or so other blog posts, some of which have yet to be published. This post should auto publish at the time I am giving the talk, or just before, or

In part one of this series I described how to visualize Android application code using Dragon Dance + Frida + Lighthouse + Ghidra. Though there is one big hang-up, what if you don’t have root or want to examine a non-app process.

dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team! - punk-security/dnsReaper

Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519 - GitHub - securekomodo/citrixInspector: Accurately fingerprint and detect vulnerable...