Directory Traversal With Burp Suite | EP1 | OWASP Hackademic | Challenge 007
We covered directory traversal vulnerability to solve Challenge 007 in OWASP Hackademic free lab. Understanding the Challenge:…
Penetration Testing
User Agent Spoofing Explained | EP1 | OWASP Hackademic | Challenge 5
We covered a practical example demonstrating encoded cross site scripting vulnerability using character encoding & Brup Suite…
Practical Encoded Reflected XSS | EP3 | OWASP Hackademic | Challenge 004
We covered a practical example demonstrating encoded cross site scripting vulnerability using character encoding & Brup Suite…
Reflected Cross Site Scripting | EP2 | OWASP Hackademic | Challenge 003
We covered a practical example demonstrating Reflected Cross Site Scripting XSS using Burp Suite to solve Challenge…
Playing with Javascript Methods | OWASP Hackademic | Challenge 002
We covered another web application penetration testing challenge where we inspected Javascript methods in the examined webpage…
Directory Browsing and Spidering Explained | OWASP Hackademic | Challenge 001
We covered Directory Browsing and Spidering by using and solving Challenge 001 in OWASP Hackademic free lab….
XPATH Injection Vulnerability Explained | OWASP WebGoat
We covered and explained XPATH Injection Vulnerability by using OWASP WebGoat free lab.. What is XPath Injection?…
Session Fixation Attack Explained | OWASP WebGoat
We covered and explained Session Fixation Attack using OWASP WebGoat free lab. What is a Session Fixation…
Javascript validation Bypass Explained | OWASP WebGoat
We covered and explained Javascript validation Bypass using OWASP WebGoat free lab. What is JavaScript Validation? JavaScript…
XML External Entity Injection Explained | EP1 | OWASP WebGoat
We demonstrated and explained practically XML External Entity Injection using OWASP WebGoat lab. What is XXE? XXE,…
String SQL Injection Vulnerability Explained | EP3 | OWASP WebGoat
We covered the third part that discusses string SQL injection vulnerability using OWASP WebGoat lab. String SQL…
OSINT Case Studies P2 | Blockchain & Manhunt | HackTheBox Block Hunt3r & Missing in action
We covered the second part of open source intelligence case studies as part of HackTheBox OSINT track….
Local File Inclusion Vulnerability | Billu-B0x Vulnhub Lab
In this post, we covered local file inclusion vulnerability using Billu-B0x machine from Vulnhub. Local file inclusion…
SQL Injection in Search Fields | TryHackMe Cybercrafted Minecraft CTF
In this post, we covered SQL injection in search forms and performed Linux privilege escalation on the…
Cockpit CMS and ExifTool Exploitation | TryHackMe CMSpit
Introduction In this walkthrough, we demonstrated Content management system exploitation, namely Cockpit, and privilege escalation on Exiftool….
How to exploit unquoted services in Windows Server – Cyberseclabs Deployable
Premise In this walk-through, we demonstrated the exploitation of a vulnerable Tomcat Web-server to gain initial access…
How To Modify Python Exploits Like a Developer | Cyberseclabs Fuel Walkthrough
Premise In this walkthrough, we went over a Linux lab machine and demonstrated basic application and use…
Windows Privilege Escalation in XML Files – Cyberseclabs Unattend
We demonstrated how to do privilege escalation on windows after grabbing plain text credentials in XML files….
How to detect and evade firewall and Intruction Detection Systems – Fragscapy
Premise In this post, we went over fingerprinting and discovering firewalls and Instruction detection systems. We used…
How to Bypass Firewalls That Block ICMP Ping with hping3
Introduction In this video tutorial, we went over the techniques needed to bypass firewall rules that block…