What is a stack?

First of all, This was a private program, so I will refer to it with example.com.
Let me tell you how I found the Reflected XSS…

This blog post was published on PurpleBox website on July 20th, 2022.

ProFTPD (Professional File Transfer Protocol server Daemon) is an open-source software, used for FTP servers on Unix and Unix-like systems…

In part1 of the article, I introduced JSON web tokens that what is JWT and How they are made? I prefer to take a look at that before you go…

DNS Rebinding is a method of bypassing Same Origin Policy by manipulating DNS resolution

domain escalation from a low-privileged user to a domain admin

The Lab Environment

(CSRF + Flash + HTTP 307) = Great for exploitation

Hello hackers,

Introduction:

https://www.mysweet.id/2023/08/users-of-x-must-now-pay-for-tweetdeck.html

Hi fellow hunters, in this write-up, I will explain how I founded SQL Injection Vulnerability and was able to dump data from the US…

Hello readers, let’s dive into the depths of cyber intrigue with ‘Agent Sudo,’ a captivating easy rated room on TryHackMe. Imagine yourself…

Overall, there are two types of access tokens (https://medium.com/@boutnaru/windows-security-access-token-81cd00000c64) — as stated in the…

जबकि पिंजरे के बीच लड़ाई होती है मेटा सीईओ मार्क जुकरबर्ग और टेस्ला सीईओ एलोन मस्क ऐसा लगता है कि यह रुका हुआ है, अगर ये लोग कभी झगड़ा करना बंद कर देते हैं, तो यह “टेक भाई” शब्द को एक नया अर्थ देगा।…

For experts looking to prove their expertise in penetration testing and ethical hacking, the CompTIA PenTest+ exam is a widely recognised…

In cybersecurity, threats to online applications are in a constant state of evolution. Among these digital predators, HTML Injection…

The T-Pot Honeypot framework is a multi-use Honeypot framework that deploys custom Docker containers to a set of protocols that emulate…