Published inDefmaxAnalyzing Java Heap Dumps via OQL queriesJava heap dumps contain sensitive data like Environment files, Passwords, Secret keys. This head dump is exposed by the Spring boot…Oct 28, 2021Oct 28, 2021
Published inDefmaxRCE via war upload in Tomcat using path traversal.Recently I have found a remote code execution through file upload in a java application where I have used a path traversal and war file…Mar 7, 2021Mar 7, 2021
Midnight Sun CTF 2019 Quals WriteupHello everyone. This was the best ctf that has happened this week. This was organized by HackingForSoju team. All the web challenges were…Apr 6, 20191Apr 6, 20191
35C3 2018 CTF Write upHello guys, This was the first time I played 35C3 CTF. It was a very though ctf and It has a wide exposure of new vulnerabilities. I spent…Dec 31, 2018Dec 31, 2018
