InfoSecSherpa: Your Guide Up a Mountain of Information!

I am going to share my 5 personal bookmarks that I mostly use during penetration testing. Let’s jump into the topic.

You are probably familiar with the concept of hiding API Keys in your Android application. It’s rather logical, isn’t it? I mean, who would…

Disclaimer

İstemcilerin isteklerini işleyerek web sayfalarını veya web uygulamalarını sunan yazılım ya da hizmet web sunucusu olarak adlandırılır…

At Defcon 31 I stumbled across the payment village. Knowing nothing about the space, I decided to give the workshop and CTF a try.
The…

Doctor, an easy-level Linux OS machine on HackTheBox, a platform resembling a digital message board. The challenge involves seeking out a…

A report on Vault, a hard rated machine from OffSec’s Proving Grounds.

Introduction

In today’s digital landscape, businesses are increasingly reliant on software applications to drive their operations, serve customers, and…

😱💥[ 𝐏𝐂𝐈 𝐃𝐒𝐒 𝐌𝐨𝐧𝐢𝐭𝐨𝐫𝐢𝐧𝐠 𝐇𝐨𝐦𝐞-𝐋𝐚𝐛]💥👩‍💻
This home-lab is focused on building continuous PCI DSS Monitoring using…

In simplest terms, application security, regardless of the field, scale, or business flows, will either make or break you.

In today’s digitally connected world, Software as a Service (SaaS) has emerged as a game-changer for businesses. It offers unparalleled…

Learn CEH Training from Professional Hackers in 50+ hours. Join Ethical Hacking Training in Chennai @ Bitaacademy

Hi guys, i hope your well. Today i will tell you how i made 500 dollars with host header injection.

We embark on a beginner-friendly challenge presented by TryHackMe, where the room Anthem Windows machine awaits our exploration.

The cloud has revolutionized the way that organizations store, manage, and access sensitive information. By leveraging the cloud…

In this writeup, we delve into the analysis of command injection vulnerability (known as CVE-2022–40127)

Hey there, Brace yourselves for a tale of code capers, bounty hunting, and a surprisingly sweet $500 reward, all set in the enchanting…

“Olá a todos”. That’s “Hello everybody” in Portuguese (Brazil) haha. Hi, I am André Ricardo, and I am a Senior Cyber Security Analyst —…