The series of A New Attack Surface on MS Exchange: A New Attack Surface on MS Exchange Part 1 - ProxyLogon! A New Attack Surface on MS Exchange Part 2 - ProxyOracle! A New Attack Surface on MS Excha

Physical access controls are designed to prevent unauthorized access to secure areas directly. Examples of physical access controls…

I will update this post regularly, I am starting with a few of my most commonly used snippets.

TL;DR

Firstly I want to say that I highly recommend https://pwnable.kr/play.php to learn exploit development, the site is full of nice and easy…

Hi everyone, it’s been some time since I last posted but I was just playing IO WARGAME and decided to write some up some solutions in the…

As you should know by now, this blog has moved but incase you have missed it, check back to the site daily: https://labs.p64cyber.com

https://labs.p64cyber.com/hunting-for-vulnerabilities-in-android-apps-with-burp-and-apk-tools/

Today I am sharing more than one post, the new site, P64. Over time P64 will become the number one online offensive security resource, it…

“Day 80: Becoming a Version Detection Ninja with GIT” is published by Diddy Doodat.

A bug alowed executable file uploads from patients into the EHR system. A double click on the wrong file could execute malicious code.

Two IDOR bugs leak private data on healthcare providers; their e-mail, phone and address.

The bugs lead to potential access to data of 130k healthcare providers; including their own cyber risk insurance policy documents.

Compromising logins of Ahold Delhaize USA employees for >3.5 years (or even 18 years?). Escalating a XSS bug to Perl SSTI RCE. Full…

Coordinated vulnerability disclosure of a bug in an application used to submit reports of improper behaviour.

Background
As some might know, I work as a medical doctor (general practitioner) by day and as a security researcher by night. One of my…

A full write-up that explains the discovery and exploitation of a blind SQL injection bug.

A full write-up that learns the reader how to find reflected XSS and open redirect bugs. Hema.nl was used as an real life example.

A full write up: How to find a stored XSS bug in a Wordpress plugin and create a proof of concept payload that hijacks the full…

IKEA.com did not check the fields being used in one of their email forms. This resulted in the creation of fully signed phishing email.

Regilero's blog; Mostly tech things about web stuff.