Serhat ÇİÇEKinInfoSec Write-upsNext Generation Nuclei: Detecting SQLi with LogicSQL Injection (SQLi) is a common and critical security vulnerability in web applications. In this article, I will introduce our new Nuclei…May 21May 21
Serhat ÇİÇEKinInfoSec Write-upsPentesting DPoP(Demonstrating Proof-of-Possession)IntroductionFeb 28Feb 28
Serhat ÇİÇEKinInfoSec Write-upsKey Concepts in Secure Software Development: A Pentester’s PerspectiveWeb, mobile, and desktop applications are crucial in today’s tech world. Most software developers overlook the concept of ‘security’ while…Feb 1Feb 1
Serhat ÇİÇEKinInfoSec Write-upsZip Slip VulnerabilityThe Zip Slip vulnerability revolves around the unsafe extraction of compressed files within applications. It occurs when software…Dec 22, 2023Dec 22, 2023
Serhat ÇİÇEKinInfoSec Write-upsZero to Hero Burp Suite ExtensionWeb application security testing is of paramount importance in today’s digital world. Services and applications offered on the internet can…Nov 8, 2023Nov 8, 2023
Serhat ÇİÇEKinInfoSec Write-upsWhat is Prototype Pollution VulnerabilityJavaScript programming language is one of the essential tools in modern web applications. With advancing technology, JavaScript has also…Apr 10, 2023Apr 10, 2023
Serhat ÇİÇEKinInfoSec Write-upsREST API FUZZINGWith the developing technology, applications are transitioning to a platform-independent structure. In order to achieve this independence…Oct 22, 20222Oct 22, 20222
Serhat ÇİÇEKinInfoSec Write-upsAdding Root Certificate to Android With Magisk ModuleIn order to perform dynamic penetration tests in android applications, we need to bypass the sslpinning security measure. In order to…Sep 20, 2022Sep 20, 2022
Serhat ÇİÇEKinInfoSec Write-upsVulnerable Websocket ServerIn this article, we will talk about some websocket vulnerabilities. To test for security vulnerabilities, it is necessary to install the…Aug 13, 2022Aug 13, 2022
Serhat ÇİÇEKinInfoSec Write-upsAnalyzing Android Encryption Processes with FridaMobile applications usually use the HTTP protocol to communicate with the server. Mobile applications encrypt and transmit the session…Aug 6, 20221Aug 6, 20221