2024
2023
- 27 Oct CSRF 101
- 27 Oct Defending Against XSS Attacks: Strategies and Best Practices
- 15 Oct HTB Writeup: Active
- 15 Oct How to delivery file when exploitation
- 02 Oct HTB Writeup: Derailed
- 15 Sep Introduce to buffer overflow vulnerability
- 15 Aug Heap Exploitation: Heap introduction and Use-After-Free vulenrability
- 15 Aug HTB Writeup: Agile
- 10 Aug HTB Writeup: TwoMillion
- 01 Jun CVE-2023-2684: File Renaming on Upload <= 2.5.1 - Authenticated (Admin+) Stored Cross-Site Scripting
- 30 May CVE-2023-2811: AI ChatBot <= 4.5.5 - Authenticated (Administrator+) Stored Cross-Site Scripting
2022
- 03 Dec CVE-2022-4278: SourceCodester Human Resource Management System employeeadd.php SQL Injection
- 30 Nov CVE-2022-4229: SourceCodester Book Store Management System 1.0 /bsms_ci/index.php Access Control
- 05 Oct CVE-2022-4228: SourceCodester Book Store Managerment System 1.0 Password Information Disclosure
- 23 Aug Port Redirection and Tunneling
- 23 Aug Active Directory Enumeration & Attacks
- 19 Aug Linux Privilege Escalation
- 05 May Windows Privilege Escalation