There is no excerpt because this is a protected post.
My explanation of how I found 15 CVEs in 3 nights and my tips on how you can too!
Multiple new CVEs discovered and disclosed! XSS, DoS and a weak password policy!
Multiple new CVEs discovered and disclosed! XSS, file uploads and more!
A detailed walkthrough of CVE-2022-34625 aka a Server-Side Template Injection (SSTI) to Remote Code Execution (RCE)
A great collection of scripts for attacking and defending Azure environments. Perfect for any azure cloud security assessment, audit or penetration test.
You tell me what you think of this wordlist repo? Is it worth adding?
A great alternative to have for web discovery during web app pen tests or bug bounties.
A great and useful device for any physical penetration test or hardware hacking engagement.
A toolset for performing recon and exploiting an Azure AD instance.