PhpMyAdmin Command Injection | EP1 | Zico2 VulnHub CTF Walkthrough
We covered the first part of Zico2 VulnHub CTF Walkthrough where we demonstrated command injection in an…
PHP
Command Injection & SQL Injection | HackTheBox Looking glass & Sanitize | OWASP TOP 10
We covered Command Injection & SQL Injection which are in the OWASP TOP 10 list of vulnerabilities….
Broken Authentication | HTB OWASP TOP 10 – P2
We covered broken authentication, session hijacking and information disclosure as part of HTB OWASP TOP 10 track…
XML External Entity Injection | HackTheBox baby WAFfles order
We covered a simple demonstration of XML External Entity Injection vulnerability which is part of OWASP Top…
Fuzzing Web Applications with Wfuzz | HackTheBox baby todo or not todo
We covered Fuzzing Web Applications with Wfuzz specifically fuzzing API endpoints. This was part of HackTheBox OWASP…
Python Pickle Exploitation | HackTheBox OWASP Top 10 Baby Website Rick
We covered python pickle where we demonstrated the serialization and deserialization of python pickle objects. This was…
PHP Static-Eval Exploitation | HackTheBox Baby Breaking Grad
We covered basic white box penetration test by inspecting, analyzing and exploiting a web application source code…
How to Review a Vulnerable SQL Injection Login Form in PHP
How to Review a Vulnerable SQL Injection Login Form in PHP Summary We reviewed a login form…
Bypassing PHP Disable Functions and Upload Filters | TryHackMe
Introduction We covered how to bypass disable functions in php and how to evade upload filters in…