Finding weaknesses in a computer system or network and taking action to close them is known as ethical hacking.

Hello everyone, welcome back to yet another blog. Thank you so much for showing your love in my previous post. Without any further delay…

Hey, I’m Abhishek Dirisipo.

In the fast-evolving domain of APIs, GraphQL has emerged as a powerful, data-oriented language. As its adoption soars, so does the need for…

Tale of securing the university of united states.

Are you ready to step into the exciting world of ethical hacking and web security? Look no further! Join our globally renowned…

tl:dr: The SCCM AdminService API is vulnerable to NTLM relaying and can be abused for SCCM site takeover.

Learning Penetration Testing

In the field of web application security testing, Burp Suite has established itself as a powerful and widely-used tool. Whether you are a…

Hello friend, This writeup is about a simple CSRF in a function that’s using OAuth to attach third-party accounts to the user’s dashboard.

Hello Everyone,

CEH Practical 是需要在 6 小時內完成 20 題實作考試的入門級實戰證照，很適合資安管理人員了解一些攻擊原理，畢竟管理人也絕對是需要懂防守與攻擊技術概念。早期的 CEH 考試沒有實作，而現在 CEH Practical…

Introduction:

The publication was prepared by: Gena | GG, rykovka, RoyHansen, AnnaB, Rufat, Sula and the_liolik

Випуск підготували: Gena | GG, rykovka, RoyHansen, AnnaB, Rufat Sula і the_liolik

User Interface Privilege Isolation (UIPI) was introduced in Windows 2008/Vista with the goal of mitigating “Shatter Attacks”. Those types…

Hello Hackers this my first and not last write up i want to share my solutions.
And for those not familiar with Capture The Flag (CTF)…

Recently, we developed a tool used to exploit file upload vulnerabilities. What tool is it? The tool is called “dvwaupsploit,” short form…

TLDR; Discovered a programming bug exposing sensitive data on a financial platform, reported it and received an appreciation letter from…

ISO27701은 개인정보 보호를 위한 ISO27001 및 ISO27002의 확장판으로, 조직이 개인정보보호를 위해 갖추어야하는 요구사항과 가이드라인을 동시에 제공한다.