Hellow world! Hope everyone’s doing great. I’m back with another part from our XSS Gym series. Without further ado let’s jump right into it. Exercise 11 Injection in Script Tag – Single Quote Delimiter Looking at the context, we can see that our input is reflected inside p11 variable in a script tag. Technically we … Read moreXSS Gym – Part Three
Hellow world! How ya’ll doing? I’m back with another post from our XSS Gym series. In the last part we covered exercises 1-4, and today we’ll be covering exercises 5-10. Hope everyone is ready. Let’s get to it. Exercise 5 Injection in Regular Tags Compared to the last exercise, this one is a lot simpler. … Read moreXSS Gym – Part Two
Hellow world! Hope ya’ll doing great. It’s been a while since last I posted on my blog, apologies for that, but I though I’d make up for it by starting a new challenge. First things first, the reason I haven’t posted in a while was that I was busy with a penetration testing bootcamp that … Read moreXSS Gym – Part One
Hellow world! In the last post we covered everything up to inserting our subdomain records into the database and making sure the entries are unique. So without further ado, let’s take it up from there. Our next goal would be updating the existing records with a new status code. (This will make more sense in about … Read moreCreating a recon database with Flask, MongoDB, REST Api and ChatGPT — Part Two
Hellow world! If you are also new to bug bounty, you probably too experienced the confusion and pain of not knowing on how to store your recon data properly. I sure did, and still do to some extent. So my goal here is to figure out a way to solve that issue and share it … Read moreCreating a recon database with Flask, MongoDB, REST API and ChatGPT — Part One
Hellow world! How y’all doing? Today we’ll be discussing the 2nd part of our SQL Injection attacks. As mentioned in the last article, I initially planned to combine all the SQLi write-ups into one, but as I started with the last article I decided its better to dive a little deeper than usual with more … Read moreOWASP Juice Shop – SQL Injection 2
Hellow world! Today I want to talk about SQL Injection, and how I discovered multiple SQLi vulnerabilities on OWASP Juice Shop. I waited till today to write about SQLi simply because in the first injections I found were honestly so simple that could be explained in one paragraph. So I decided to wait a lil … Read moreOWASP Juice Shop – SQL Injection 1
Hellow world! In today’s write-up, I will explain to you in a very detailed and informative fashion the steps I took, or didn’t, in order to achieve a successful Cross Site Request Forgery Attack (aka CSRF) on OWASP’s Juice Shop application. It is going to be a long one, so buckle up… To be perfectly … Read moreOWASP Juice Shop – CSRF
Hellow World! Today we will talking about another one of the vulnerabilities I found during the first day of attacking OWASP Juice Shop for practice. This one is also interesting, because it involves a neat trick I learned while listening to my favorite bug bounty podcast Critical Thinking Podcast. (shout out to Justin Gardner aka Rhynorater) This … Read moreOWASP Juice Shop – Open Redirect
Hellow world! After a long time I decided to start writing on my own blog. This time with a lil more dedication. I will be documenting my journey through the most popular vulnerable web apps and CTFS for starters and see where it takes me. First stop: OWASP Juice Shop -If there’s any energy left … Read moreOWASP Juice Shop – DOM XSS