Here are a bunch of reverse shell snippets inspired by PayloadAllTheThings. Change the host, run the shell on the target and use this to catch the shell…
Sometimes while writing scripts to use sqli (SQL injection) to extract data, we have to deal with Boolean-based sqli. Usually this is done in a linear loop, but we can use binary search to speed it up.
A brief summary of the talk by Randall Degges titled “JSON Web Tokens Suck”
Some identification numbers (IDs) come with check-digits, for example national IDs, membership IDs. In some cases, data protection regulation mandates masking parts of the ID during storage or when displayed. In most of these masked cases, the check-digit remains…
Sometimes while writing pentest scripts, we need to write quick-and-dirty functions to attack certain vulns. Here are some of them.