Website penetration testing is a way to test the security of a website by performing the same tasks that a malicious user would perform…

In today’s digital world, software applications are essential for businesses of all sizes. They are used to store and process sensitive…

Hey readers! I want to tell you about a cool thing I did — booking a metro ticket for just 1 rupee. Here’s how it happened:

Amidst today’s rapidly evolving digital landscape, where technology underpins nearly every facet of our lives, cybersecurity has risen to…

Hey Guys! Welcome to the 2nd CTF challenge writeup. Let’s Go.

In today’s rapidly evolving digital landscape, where technology advancements drive businesses and communication, ensuring the security of…

Twitter’s name change to X has created a buzz among netizens. As per Elon Musk, Twitter was acquired by X Corp to ensure freedom of speech…

In this blog, I am gonna share about a bug that I came across while performing VAPT for a private project.
 This is a CMS website that I…

Hi Everyone,

NOTE: The original work is attributed to NETENRICH Corporation. Here, you can find the official version. This article is not an in-depth…

Depending on how secure a remote server is, some of the simplest attacks could give you access, like a buffer overflow. Continued…

$Whoami

This lab’s two-factor authentication can be bypassed. To solve the lab, access Carlos’s account page | Karthikeyan Nagaraj

Exploring Google Dorking Queries to Enhance API Security 🔒

In the realm of ethical hacking, reconnaissance, often referred to as the “information gathering” phase, is the crucial first step. To…

Bug Bounty POC Preparation Guide For XSS Vulnerability

Self-learning big bounty

Welcome back to the 2nd story in the “Threat Modeling Handbook” series. In the last story, we discussed what is a threat model and why it…

Unveiling the Threat of IDOR Vulnerabilities By Hacking a Fintech Provider Ethically