Laur Telliskivi – Medium

Laur Telliskivi

Laur Telliskivi

5 ways to elevate —Learnings from eksclustergames

What can possibly go wrong when an adversary has hacked into your low-privileged AWS EKS pod running one of your application services? EKS…

9 min readJan 12, 2024

--

5 ways to elevate —Learnings from eksclustergames

--

Laur Telliskivi

Snyk CTF 2023 writeup: Bedsheets

I had the opportunity to take part in Snyk’s 2023 Fetch the Flag competition with my awesome colleagues. We had a lot of fun solving these…

7 min readNov 1, 2023

--

Snyk CTF 2023 writeup: Bedsheets

--

Laur Telliskivi

Circular fragment exploitation in GraphQL with BurpSuite

Having managed multiple bug bounty programs over the years as a security engineer, I have seen all kinds of bugs submitted, mostly all…

4 min readOct 23, 2023

--

Circular fragment exploitation in GraphQL with BurpSuite

--

Laur Telliskivi
in
Axel Springer Tech

Intigriti code challenge — World of Contexts

I came across this interesting code challenge by Intigriti. If you don’t already follow them in the X app (formerly Twitter) then you…

5 min readOct 9, 2023

--

Intigriti code challenge — World of Contexts

--

Laur Telliskivi
in
Axel Springer Tech

Decomposing a common phishing attack

According to CISA, 90% of successful cyber attacks start when you click an unfamiliar link or attachment. For those who are not familiar…

8 min readOct 1, 2023

--

Decomposing a common phishing attack

--

Laur Telliskivi

Blackfield — abusing Windows privileges

If you are into cyber security and don’t know HackTheBox (HTB) platform, GET ON IT! It is a fantastic learning tool for getting hands-on…

9 min readSep 23, 2020

--

Blackfield — abusing Windows privileges

--

Laur Telliskivi

Analysis of a phishing email

As the whole world has become more used to working from home due to COVID-19, it is only natural to have cyber attackers focus more on…

9 min readJul 20, 2020

--

1

Analysis of a phishing email

--

1

Laur Telliskivi

TL;DR — I passed my OSCP exam!

I am proud to announce that I passed my Offensive Security Certified (OSCP) exam on my first try!!! I can’t still believe it as it was the…

4 min readJan 30, 2020

--

TL;DR — I passed my OSCP exam!

--

Laur Telliskivi

Pentesting basics: Cookie Grabber (XSS)

In 2017, injection (attack) was identified by OWASP as the most serious web application security risk for a broad array of organizations…

6 min readOct 25, 2018

--

Pentesting basics: Cookie Grabber (XSS)

--

Laur Telliskivi

Laur Telliskivi

Former requirements engineer and a musician. Currently Senior Security Engineer at Axel Springer. Follow me in Twitter: @tell1skivi

Help
Status
About
Careers
Blog
Privacy
Terms
Text to speech
Teams