Denial Of Service and an Arbitrary file copy and download found in MSI's Feature Navigator demo software!
Multiple new CVEs discovered and disclosed! IDOR, User Enum, invalid session termination and a weak password policy!
A location sharing open source server and android client was found to hardcode credentials and allow weak passwords by default (including blank passwords!)
Multiple new CVEs discovered and disclosed! XSS, DoS and a weak password policy!
Multiple new CVEs discovered and disclosed! XSS, file uploads and more!
A detailed walkthrough of CVE-2022-34625 aka a Server-Side Template Injection (SSTI) to Remote Code Execution (RCE)
Denial of Service discovered against Fossil SCM when running on Windows boxes.
Complete instructions on how to install kali nethunter on any android device updated for 2021!
Top 10 books for any hacker, penetration tester, bug bountier or more!
Security Researcher Security Researcher... I have to say, since the rise of Bug Bounties, The self-proclaimed title of Security Researcher has gotten less and less popular Here is something I realized years ago... A little background, at this time, I had used some tools, I had used BackTrack and then Kali, I have monitored trends … Continue reading Who are you?!