Thanks for ur support!

Recent posts

notes

10 - Attacking Serialization

Attacking Serialization in Java, PHP and .NET

02 Dec 2023

37 minute read

notes

9 - XML Attacks

Tag Injection, XXE, Xpath Injection and More

02 Dec 2023

25 minute read

notes

8 - SQLI Filter Evasion

Bypassing Keyword and Function Filters

01 Dec 2023

12 minute read

notes

7 - SQL Injection

Learn techniques of exploitation for Mysql, MSSQL and Oracle Databases

01 Dec 2023

15 minute read

notes

6 - HTML5

How to exploit the new features of HTML5

30 Nov 2023

16 minute read

notes

5 - Cross-site request forgery (CSRF)

Discovering, Execution and Bypass techniques

30 Nov 2023

14 minute read

notes

4 - XSS Filter Evasion

Bypass blacklisting Filters, sanitization and Browser Filters

29 Nov 2023

5 minute read

notes

3 - Cross-site scripting (XSS)

How to discover and exploit a XSS vulnerability

29 Nov 2023

12 minute read

notes

2 - Evasion Basics

Base64 encoding, obfuscations, compressing, escapes and More

28 Nov 2023

9 minute read

notes

1 - Encoding & Filtering

Filtering with Regex, Types of encoding, Bypass WAF and More

28 Nov 2023

8 minute read

review

Web application Penetration Tester eXtreme

My Review of the eWPTXv2 by INE

28 Nov 2023

less than 1 minute read

notes

6 - Movement, Pivoting and Persistence

Lateral Movement, Pivoting and Persistence using the C2 Covenant and Metasploit

27 Nov 2023

24 minute read

notes

5 - Windows Privilege Escalation

Navigating Windows Privesc Techniques: Kernel Exploits, Impersonation, Registry, DLL Hijacking and More

27 Nov 2023

15 minute read

notes

4 - Linux Privilege Escalation

Exploring Linux Privesc Techniques: Kernel Exploits, SUDO, SUID, Scheduled Tasks, NFS Root Squashing and More

27 Nov 2023

7 minute read

notes

3 - External Pentest Playbook

The full life cycle of an External Pentest: ROE, Osint, Attacking Login Portals, Report, Client Debriefs and More

26 Nov 2023

7 minute read