The encyclopedia for offensive security in the cloud

DNS rebinding headless browsers with dref

everytime yu face a 401 Unauthorized respense add this header to the request : X-Custom-IP-Authorization: 127.0.0.1 #bugbountytips

A collection of links related to Linux kernel security and exploitation - xairy/linux-kernel-exploitation

Regular expressions (or commonly known as regex) have been used for years to provide developers a quick way to pattern match or parse…

Malvuln.com is the first website ever dedicated exclusively to Malware security vulnerability research. Malvuln was created by security researcher John Page (aka hyp3rlinx) and includes postings of 0day exploits targeting malware, worms and viruses. Malvuln…

The software security of embedded devices is often overlooked. Learn about the common issues allowing bad actors to exploit embedded devices.

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications - python-security/pyt

A deliberately-vulnerable website and exercises for teaching about the OWASP Top 10 - GitHub - mpirnat/lets-be-bad-guys: A deliberately-vulnerable website and exercises for teaching about the OWASP...

Reverse Engineer's Toolkit. Contribute to mentebinaria/retoolkit development by creating an account on GitHub.

Many machine learning (ML) models are Python pickle files under the hood, and it makes sense. The use of pickling conserves memory, enables start-and-stop model training, and makes trained models portable (and, thereby, shareable). Pickling is easy to implement…

We analyzed tactics, techniques, and procedures and tools used by HAFNIUM to target (and breach) Microsoft Exchange servers. | Breach and Attack Simulation

Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that back through your already existing Beacon communication chann...

Finally a way to get in memory LSASS dumps back through your beacon using a novel technique to leverage the BOF BeaconPrintf() function to send directly to the Cobalt Strike team server. Nice work Shawn! github.com/xforcered/Cred…twitter.com/anthemtotheego…

Today SonarSource is pleased to share a guest contribution to our Code Security blog series about learnings from a chain of serious vulnerabilities in MyBB.