One of the first thing I learned when I started security, is that the report is just as important as the pentest itself.
Some bug bounty platforms give reputation points according the quality.
While there is no official rules to write a good report, there…

Knightsbr1dge.red

This is one of my findings back in last year when I was testing a back-office application of a big company. As the application was on the…

JSMon: Automated JavaScript File Monitoring Today I’m proud to release JSMon, an online change monitoring tool for javascript files!

Turning a P5 Content Injection into P3 Reflected XSS

Hi! This write-up is about my experience and my walk-through, How I solved the Bugcrowd’s LevelUp0x07 CTF :)

Hello everyone I thought of sharing my recent finding of Double P1 which recently got solved and they are sending me Goodie Pack for it…

TL;DR

A theory to practice approach

The Windows kernel allows the operating system to interact with the hardware and system resources of the computer. It runs the code in a…