Django is a python based web framework. In this writeup, i will teach you how to analyze django based applications . For this writeup, i…

Using hooks & file I/O emulation to redirect disk I/O operations to memory, removing disk I/O & related syscalls during fuzzing (which also enables using snapshot-fuzzers that don't support disk I/O).

ریموت‌های هاپینگ چطور کار می‌کنند که قادر هستند امنیت بیشتری را تامین کنند. آیا واقعاً ریموت‌های هاپینگ دارای امنیت بیشتری هستند؟

Learn how GuardDuty can monitor EKS clusters within your AWS environment.

UAC Bypass via DLL hijacking of Microsoft Support Diagnostic Tool (MSDT). The UAC bypass method described here is based on DLL hijacking which (...)

In this video we'll be exploring how to attack, detect and defend against DNS Tunnelling, a technique that can bypass certain firewall restrictions and provide an attacker with a command & control and data transfer channel. It can also be used to bypass many…

Cloudflare, an American company focused on web infrastructure and website security, has announced the launch of a new public bug bounty program.

Contribute to RedTeamOperations/Advanced-Process-Injection-Workshop development by creating an account on GitHub.

Tools & knowledge for IT pros

API12019: Testing for IDOR/Broken object level authorization:

In this blog post, we’ll look at a Windows Print Spooler local privilege escalation vulnerability that I found and…

Hello everybody. I am so happy to announce you my first post of 2022 about Attack Surface’s of Industrial Control Systems. I will use ICS…

When communicating online, we constantly use emoticons and put text in bold. Some of us encounter markdown on Telegram or GitHub, while forum-dwellers might be more familiar with BBCode. All this is made possible by parsers, which find a special string (…