The Cyber GuySQL Injection Union AttacksIf a Website is vulnerable to the SQL Injection, the results of the querry are returned in the application response.We can exploit that by…6d ago
Somnath Dasreq.query and its consequences — Javascript QuirksThis article covers a few anomalies while parsing query in Express.js that I encountered while solving a challenge from Anveshanam CTF…Jul 3Jul 3
cyberpro151My First Account Takeover Via Password Reset PoisoningHey there everyone! It’s cyberpro151 here and in today’s article, I’ll share with y’all that how I was able to find an Account Takeover…Feb 1611Feb 1611
WiktorDerdaCross-site Scripting — TryHackMe WalkthroughIt’s worth noting that because XSS is based on JavaScript, it would be helpful to have a basic understanding of the language. However…Jul 20, 20222Jul 20, 20222
The Cyber GuySQL Injection Union AttacksIf a Website is vulnerable to the SQL Injection, the results of the querry are returned in the application response.We can exploit that by…6d ago
Somnath Dasreq.query and its consequences — Javascript QuirksThis article covers a few anomalies while parsing query in Express.js that I encountered while solving a challenge from Anveshanam CTF…Jul 3
cyberpro151My First Account Takeover Via Password Reset PoisoningHey there everyone! It’s cyberpro151 here and in today’s article, I’ll share with y’all that how I was able to find an Account Takeover…Feb 1611
WiktorDerdaCross-site Scripting — TryHackMe WalkthroughIt’s worth noting that because XSS is based on JavaScript, it would be helpful to have a basic understanding of the language. However…Jul 20, 20222
Shubham KhannaWeb-Based Exploits: The Sneaky TricksImagine a website as a cozy house with hidden cracks in its walls. These cracks represent coding flaws — little vulnerabilities that…Jun 26
Owais ShariffTryHackMe: Walking an Application (Detailed Explanation)This is room on how to manually review a web application for security issues using only the in-built tools in your browser. More often…Nov 6, 20231
Tarunna SenWriteup for “Exploiting insecure output handling in LLMs”Portswigger “Web LLM Attack” Lab WriteupJun 21