Published inSystem WeaknessPentesting Backend Course Project | CTIS256Learn how to compete with live web applications.Jan 12Jan 12
Published inT3CHBreak Out The CageLearn how to perform privilege escalation methods called vertical & horizontal vectors and extended fuzzing operations.Dec 24, 2024Dec 24, 2024
Published inT3CHHacker101 CTF | Photo GalleryLearn detailed SQLi vulnerabilities like boolean-based and time-based SQL injection. Moreover usage of the sqlmap.Dec 19, 20241Dec 19, 20241
Published inSystem WeaknessArchangel | LFI to RFI, Crontab Exploitation and PATH ManipulationLearn PATH manipulation to escalate your privileges and crontab abusement.Dec 10, 2024Dec 10, 2024
Published inT3CHEncrypted Pastebin | Method Manipulation, Padding Oracle and Input Validation FlawsIn this article, I would like to share my solution on hard level challenge called Encrypted Pastebin from Hacker101 platform.Dec 7, 2024Dec 7, 2024
Published inSystem WeaknessMicro-CMS v2 | SQLi, Bruteforce, Inconsistent Authorization ChecksDiscover many of the known owasp vulnerabilities including union based SQLi and bruteforce via Burpsuite and THCHydra. Data exposure, IDOR.Dec 5, 2024Dec 5, 2024
Published inT3CHHacker101 CTF [1–2]Learn how to understand the web applications’ behaviors against different attack vectors including unauthorized access, XSS and SQLi.Dec 1, 20241Dec 1, 20241
Published inSystem WeaknessA Real-World Web Application Penetration Testing Story | Small Mistakes Leads to Major Logic FlawsLearn how to perform real-world penetration testing approach called Logic Flaws.Nov 27, 2024Nov 27, 2024
Published inSystem WeaknessChill Hack | Sanitized Command Field Bypass, Steganography, Docker Binary ExploitationLearn how to generate ssh keypair & authenticate with target by manually adding & docker binary exploitation & sanitized input field…Nov 24, 2024Nov 24, 2024
Published inSystem WeaknessChocolate Factory | Command Injection, Source Code Analysis & SUID ExploitationLearn how to find interesting data located on Linux machine and source code analysis of PHP web application.Nov 21, 20241Nov 21, 20241
![Hacker101 CTF [1–2]](https://miro.medium.com/v2/resize:fill:160:106/1*Z0lvAqHGhul-hwRgn372SA.jpeg)
![Hacker101 CTF [1–2]](https://miro.medium.com/v2/resize:fill:320:214/1*Z0lvAqHGhul-hwRgn372SA.jpeg)
